Oval Definition:oval:org.opensuse.security:def:87570
Revision Date:2021-03-31Version:1
Title:Security update for opensc (Moderate)
Description:

This update for opensc fixes the following issues:

- CVE-2020-26571: gemsafe GPK smart card software driver stack-based buffer overflow (bsc#1177380) - CVE-2019-15946: out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry (bsc#1149747) - CVE-2019-15945: out-of-bounds access of an ASN.1 Bitstring in decode_bit_string (bsc#1149746) - CVE-2019-19479: incorrect read operation during parsing of a SETCOS file attribute (bsc#1158256) - CVE-2020-26572: Prevent out of bounds write (bsc#1177378) - CVE-2020-26570: Fix buffer overflow in sc_oberthur_read_file (bsc#1177364)
Family:unixClass:patch
Status:Reference(s):1149746
1149747
1158256
1177364
1177378
1177380
CVE-2019-15945
CVE-2019-15946
CVE-2019-19479
CVE-2020-26570
CVE-2020-26571
CVE-2020-26572
Platform(s):SUSE Linux Enterprise Server 12 SP3-TERADATA
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND opensc-0.13.0-3.11.1 is installed
    • BACK