FS#68195 - [opensc] CVE-2020-26570

Attached to Project: Community Packages
Opened by loqs (loqs) - Sunday, 11 October 2020, 01:12 GMT
Last edited by Jonas Witschel (diabonas) - Thursday, 26 November 2020, 10:15 GMT
Task Type Bug Report
Category Security
Status Closed
Assigned To Filipe LaĆ­ns (FFY00)
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file.

Additional info:
* opensc 0.20.0-1
* https://nvd.nist.gov/vuln/detail/CVE-2020-26570
* https://github.com/OpenSC/OpenSC/commit/6903aebfddc466d966c7b865fae34572bf3ed23e
This task depends upon

Closed by  Jonas Witschel (diabonas)
Thursday, 26 November 2020, 10:15 GMT
Reason for closing:  Fixed
Additional comments about closing:  opensc 0.21.0-1
Comment by loqs (loqs) - Sunday, 11 October 2020, 01:23 GMT
I missed CVE-2020-26572 [1] [2] and CVE-2020-26571 [3] although this last one may be a fuzzer mistake [4].

[1] https://nvd.nist.gov/vuln/detail/CVE-2020-26572
[2] https://github.com/OpenSC/OpenSC/commit/9d294de90d1cc66956389856e60b6944b27b4817
[3] https://nvd.nist.gov/vuln/detail/CVE-2020-26571
[4] https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20612
Comment by Jonas Witschel (diabonas) - Thursday, 26 November 2020, 10:15 GMT
These issues have have been fixed in opensc 0.21.0-1, which was released on 2020-11-25.