ALAS2-2019-1312 --- openscID: oval:org.secpod.oval:def:1700228 | Date: (C)2019-10-16 (M)2023-06-16 |
Class: PATCH | Family: unix |
Several buffer overflows when handling responses from a Muscle Card in muscle_list_files in libopensc/card-muscle.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service or possibly have unspecified other impact.Several buffer overflows when handling responses from a TCOS Card in tcos_select_file in libopensc/card-tcos.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service or possibly have unspecified other impact.Several buffer overflows when handling responses from a Gemsafe V1 Smartcard in gemsafe_get_cert_len in libopensc/pkcs15-gemsafeV1.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service or possibly have unspecified other impact.CVE-2018-16393 (application crash(CVE-2018-16418 (application crash(CVE-2018-16419 (application crash(CVE-2018-16420 (application crash(CVE-2018-16421 (application crash(CVE-2018-16422 (application crash(CVE-2018-16423 (CVE-2018-16426 (CVE-2018-16427