CVE-2021-34193
Multiple stack overflow vulnerabilities were discovered in OpenSC
smart card middleware via crafted responses to APDUs.
CVE-2021-42778
A heap double free issue was found in sc_pkcs15_free_tokeninfo().
CVE-2021-42779
A heap use after free issue was found in sc_file_valid().
CVE-2021-42780
A use after return issue was found in the insert_pin() function,
which could potentially crash programs using the library.
CVE-2021-42781
Multiple heap buffer overflow issues were found in
pkcs15-oberthur.c, which could potentially crash programs using the
library.
CVE-2021-42782
Multiple buffer overflow issues were found in various places, which
could potentially crash programs using the library.
CVE-2023-2977
A buffer overrun vulnerability was found in pkcs15's
cardos_have_verifyrc_package(). When supplying a smart card package
with malformed ASN.1 context, an attacker can trigger a crash or
Get the latest Linux and open source security news straight to your inbox.