CVE-2023-2977
Summary
| CVE | CVE-2023-2977 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-06-01 01:15:00 UTC |
|---|
| Updated | 2023-11-07 04:13:00 UTC |
|---|
| Description | A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package. The attacker can supply a smart card package with malformed ASN1 context. The cardos_have_verifyrc_package function scans the ASN1 buffer for 2 tags, where remaining length is wrongly caculated due to moved starting pointer. This leads to possible heap-based buffer oob read. In cases where ASAN is enabled while compiling this causes a crash. Further info leak or more damage is possible. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| [SECURITY] Fedora 38 Update: opensc-0.23.0-5.fc38 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| [SECURITY] Fedora 37 Update: opensc-0.23.0-5.fc37 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| cve-details |
MISC |
access.redhat.com |
|
| Possible buffer overrun vulnerability in pkcs15 `cardos_have_verifyrc_package` · Issue #2785 · OpenSC/OpenSC · GitHub |
MISC |
github.com |
|
| [SECURITY] [DLA 3463-1] opensc security update |
MLIST |
lists.debian.org |
|
| [SECURITY] Fedora 37 Update: opensc-0.23.0-5.fc37 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| 2211088 – (CVE-2023-2977) CVE-2023-2977 opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package |
MISC |
bugzilla.redhat.com |
|
| [SECURITY] Fedora 38 Update: opensc-0.23.0-5.fc38 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| pkcs15init: correct left length calculation to fix buffer overrun bug. by fullwaywang · Pull Request #2787 · OpenSC/OpenSC · GitHub |
MISC |
github.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 161112 Oracle Enterprise Linux Security Update for opensc (ELSA-2023-6587)
- 161180 Oracle Enterprise Linux Security Update for opensc (ELSA-2023-7160)
- 182714 Debian Security Update for opensc (CVE-2023-2977)
- 242326 Red Hat Update for opensc (RHSA-2023:6587)
- 242446 Red Hat Update for opensc (RHSA-2023:7160)
- 284411 Fedora Security Update for opensc (FEDORA-2023-2afb831742)
- 284415 Fedora Security Update for opensc (FEDORA-2023-29530cc60b)
- 355439 Amazon Linux Security Advisory for opensc : ALAS2023-2023-207
- 355552 Amazon Linux Security Advisory for opensc : ALAS2-2023-2102
- 379248 Alibaba Cloud Linux Security Update for opensc (ALINUX3-SA-2024:0001)
- 6000071 Debian Security Update for opensc (DLA 3463-1)
- 754076 SUSE Enterprise Linux Security Update for opensc (SUSE-SU-2023:2466-1)
- 754098 SUSE Enterprise Linux Security Update for opensc (SUSE-SU-2023:2508-1)
- 907005 Common Base Linux Mariner (CBL-Mariner) Security Update for opensc (27002-1)
- 907034 Common Base Linux Mariner (CBL-Mariner) Security Update for opensc (27012-1)
- 941408 AlmaLinux Security Update for opensc (ALSA-2023:6587)
- 941459 AlmaLinux Security Update for opensc (ALSA-2023:7160)
