Stay Connected:

ELSA-2023-6587

ELSA-2023-6587 - opensc security update

Type:SECURITY
Impact:LOW
Release Date:2023-11-11

Description


[0.23.0-2]
- Fix regression in handling OpenPGP cards
- Fix CVE-2023-2977: buffer overrun in pkcs15init for cardos

[0.23.0-1]
- Rebase to latest 0.23.0 release (#2100409)
- Use separate OpenSSL context to work better from inside of OpenSSL providers


Related CVEs


CVE-2023-2977

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) opensc-0.23.0-2.el9.src.rpmbc713b505173af7c9b6058c0b6eb4169814e436e26c551010be39feb5df73ca5-ol9_aarch64_baseos_latest
opensc-0.23.0-2.el9.src.rpmbc713b505173af7c9b6058c0b6eb4169814e436e26c551010be39feb5df73ca5-ol9_aarch64_u3_baseos_base
opensc-0.23.0-2.el9.aarch64.rpm706f7032ef70706405dc61e4c147ba9f4d070c91648c8ba92224ebdc12c5d863-ol9_aarch64_baseos_latest
opensc-0.23.0-2.el9.aarch64.rpm706f7032ef70706405dc61e4c147ba9f4d070c91648c8ba92224ebdc12c5d863-ol9_aarch64_u3_baseos_base
Oracle Linux 9 (x86_64) opensc-0.23.0-2.el9.src.rpmbc713b505173af7c9b6058c0b6eb4169814e436e26c551010be39feb5df73ca5-ol9_x86_64_baseos_latest
opensc-0.23.0-2.el9.src.rpmbc713b505173af7c9b6058c0b6eb4169814e436e26c551010be39feb5df73ca5-ol9_x86_64_u3_baseos_base
opensc-0.23.0-2.el9.i686.rpmbd9cb354ec2215cee25b68d4728a7f849eb270f19d4303ad00f365f208264dc3-ol9_x86_64_baseos_latest
opensc-0.23.0-2.el9.i686.rpmbd9cb354ec2215cee25b68d4728a7f849eb270f19d4303ad00f365f208264dc3-ol9_x86_64_u3_baseos_base
opensc-0.23.0-2.el9.x86_64.rpm32421491b119a689bd563001cdd449afafb1e2e0805b3bf54edb41fa342f3f44-ol9_x86_64_baseos_latest
opensc-0.23.0-2.el9.x86_64.rpm32421491b119a689bd563001cdd449afafb1e2e0805b3bf54edb41fa342f3f44-ol9_x86_64_u3_baseos_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights