ELSA-2023-7876

ELSA-2023-7876 - opensc security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-12-18

Description

[0.20.0-7]
- Fix file caching with different offsets (RHEL-4077)
- Fix CVE-2023-40660: Potential PIN bypass
- Fix CVE-2023-40661: Dynamic analyzers reports in pkcs15init
- Fix CVE-2023-5992: Marvin: Side-channel leaks while stripping encryption PKCS#1.5 padding

Related CVEs

CVE-2023-40661

CVE-2023-40660

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	opensc-0.20.0-7.el8_9.src.rpm	2fd8c71a19531ed051c50f6fcb1f61eb1bb02126f6d550d83872895892321776	-	ol8_aarch64_baseos_latest
	opensc-0.20.0-7.el8_9.src.rpm	2fd8c71a19531ed051c50f6fcb1f61eb1bb02126f6d550d83872895892321776	-	ol8_aarch64_u9_baseos_patch
	opensc-0.20.0-7.el8_9.aarch64.rpm	a33e76003d3ca3bb0ed95eec5eb31dec83be6123a2f30c359a5d5c58ac7ffac8	-	ol8_aarch64_baseos_latest
	opensc-0.20.0-7.el8_9.aarch64.rpm	a33e76003d3ca3bb0ed95eec5eb31dec83be6123a2f30c359a5d5c58ac7ffac8	-	ol8_aarch64_u9_baseos_patch
Oracle Linux 8 (x86_64)	opensc-0.20.0-7.el8_9.src.rpm	2fd8c71a19531ed051c50f6fcb1f61eb1bb02126f6d550d83872895892321776	-	ol8_x86_64_baseos_latest
	opensc-0.20.0-7.el8_9.src.rpm	2fd8c71a19531ed051c50f6fcb1f61eb1bb02126f6d550d83872895892321776	-	ol8_x86_64_u9_baseos_patch
	opensc-0.20.0-7.el8_9.i686.rpm	3174914cbe921b487782981e629be1061532ce5fcad9f686968380a15ed28db5	-	ol8_x86_64_baseos_latest
	opensc-0.20.0-7.el8_9.i686.rpm	3174914cbe921b487782981e629be1061532ce5fcad9f686968380a15ed28db5	-	ol8_x86_64_u9_baseos_patch
	opensc-0.20.0-7.el8_9.x86_64.rpm	5ff01a3f46adb5e115bd0c6b51577641a6f2f2cfccb8da95002a401c84e7af29	-	ol8_x86_64_baseos_latest
	opensc-0.20.0-7.el8_9.x86_64.rpm	5ff01a3f46adb5e115bd0c6b51577641a6f2f2cfccb8da95002a401c84e7af29	-	ol8_x86_64_u9_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team