SUSE-SU-2021:1168-1 -- SLES openscID: oval:org.secpod.oval:def:89047276 | Date: (C)2022-10-21 (M)2023-11-13 |
Class: PATCH | Family: unix |
This update for opensc fixes the following issues: - CVE-2019-15945: Fixed an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string . - CVE-2019-15946: Fixed an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry - CVE-2019-19479: Fixed an incorrect read operation during parsing of a SETCOS file attribute - CVE-2019-19480: Fixed an improper free operation in sc_pkcs15_decode_prkdf_entry . - CVE-2019-20792: Fixed a double free in coolkey_free_private_data . - CVE-2020-26570: Fixed a buffer overflow in sc_oberthur_read_file . - CVE-2020-26571: Fixed a stack-based buffer overflow in gemsafe GPK smart card software driver - CVE-2020-26572: Fixed a stack-based buffer overflow in tcos_decipher .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Desktop 15 SP2 |
SUSE Linux Enterprise Desktop 15 SP3 |