Explore top 10 tips to secure your open-source projects now. Read More
×
This update for opensc fixes the following security issues:
- CVE-2018-16391: Fixed a denial of service when handling responses from a
Muscle Card (bsc#1106998)
- CVE-2018-16392: Fixed a denial of service when handling responses from a
TCOS Card (bsc#1106999)
- CVE-2018-16393: Fixed buffer overflows when handling responses from
Gemsafe V1 Smartcards (bsc#1108318)
- CVE-2018-16418: Fixed buffer overflow when handling string concatenation
in util_acl_to_str (bsc#1107039)
- CVE-2018-16419: Fixed several buffer overflows when handling responses
from a Cryptoflex card (bsc#1107107)
- CVE-2018-16420: Fixed buffer overflows when handling responses from an
ePass 2003 Card (bsc#1107097)
- CVE-2018-16421: Fixed buffer overflows when handling responses from a
CAC Card (bsc#1107049)
- CVE-2018-16422: Fixed single byte buffer overflow when handling
responses from an esteid Card (bsc#1107038)
- CVE-2018-16423: Fixed double free...
Read the Full AdvisoryPatch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2018-1385=1
- openSUSE Leap 15.0 (i586 x86_64):
opensc-0.18.0-lp150.2.9.1
opensc-debuginfo-0.18.0-lp150.2.9.1
opensc-debugsource-0.18.0-lp150.2.9.1
- openSUSE Leap 15.0 (x86_64):
opensc-32bit-0.18.0-lp150.2.9.1
opensc-32bit-debuginfo-0.18.0-lp150.2.9.1
https://www.suse.com/security/cve/CVE-2018-16391.html
https://www.suse.com/security/cve/CVE-2018-16392.html
https://www.suse.com/security/cve/CVE-2018-16393.html
https://www.suse.com/security/cve/CVE-2018-16418.html
https://www.suse.com/security/cve/CVE-2018-16419.html
https://www.suse.com/security/cve/CVE-2018-16420.html
https://www.suse.com/security/cve/CVE-2018-16421.html
https://www.suse.com/security/cve/CVE-2018-16422.html
https://www.suse.com/security/cve/CVE-2018-16423.html
https://www.suse.com/security/cve/CVE-2018-16424.html
https://www.suse.com/security/cve/CVE-2018-16425.html
https://www.suse.com/security/cve/CVE-2018-16426.html
https://www.suse.com/security/cve/CVE-2018-16427.html
https://bugzilla.suse.com/show_bug.cgi?id=1104812
https://bugzilla.suse.com/1106998
https://bugzilla.suse.com/show_bug.cgi?id=1106999
https://bugzilla.suse.com/show_bug.cgi?id=1107033
https://bugzilla.suse.com/show_bug.cgi?id=1107034
https://bugzilla.suse.com/show_bug.cgi?id=1107035
https://bugzilla.suse.com/show_bu...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.