SUSE: 2018:3621-1 Moderate: OpenSC Denial Of Service Fix

suse

November 5, 2018

An update that solves 8 vulnerabilities and has one errata is now available

Summary

This update for opensc fixes the following issues: - CVE-2018-16391: Fixed a denial of service when handling responses from a Muscle Card (bsc#1106998) - CVE-2018-16392: Fixed a denial of service when handling responses from a TCOS Card (bsc#1106999) - CVE-2018-16393: Fixed buffer overflows when handling responses from Gemsafe V1 Smartcards (bsc#1108318) - CVE-2018-16418: Fixed buffer overflow when handling string concatenation in util_acl_to_str (bsc#1107039) - CVE-2018-16419: Fixed several buffer overflows when handling responses from a Cryptoflex card (bsc#1107107) - CVE-2018-16422: Fixed single byte buffer overflow when handling responses from an esteid Card (bsc#1107038) - CVE-2018-16423: Fixed double free when handling responses from a smartcard (bsc#1107037)

Topics Covered

security advisory denial of service moderate severity software fix SUSE Linux Enterprise OpenSC

References

#1104812 #1106998 #1106999 #1107033 #1107037

#1107038 #1107039 #1107107 #1108318

Cross- CVE-2018-16391 CVE-2018-16392 CVE-2018-16393

CVE-2018-16418 CVE-2018-16419 CVE-2018-16422

CVE-2018-16423 CVE-2018-16427

Affected Products:

SUSE Linux Enterprise Software Development Kit 11-SP4

SUSE Linux Enterprise Server 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2018-16391.html

https://www.suse.com/security/cve/CVE-2018-16392.html

https://www.suse.com/security/cve/CVE-2018-16393.html

https://www.suse.com/security/cve/CVE-2018-16418.html

https://www.suse.com/security/cve/CVE-2018-16419.html

https://www.suse.com/security/cve/CVE-2018-16422.html

https://www.suse.com/security/cve/CVE-2018-16423.html

Announcement ID: SUSE-SU-2018:3621-1

Rating: moderate

Topics Covered

security advisory denial of service moderate severity software fix SUSE Linux Enterprise OpenSC

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2018:3621-1 Moderate: OpenSC Denial Of Service Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2018:3621-1 Moderate: OpenSC Denial Of Service Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!