CLSA-2025-1766598218

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1766598218.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1766598218

Upstream

CVE-2024-45615

CVE-2024-45616

CVE-2024-45617

CVE-2024-45620

Published

2025-12-24T17:43:42Z

Modified

2026-06-01T00:31:34.466186331Z

Summary

opensc: Fix of 4 CVEs

Details

CVE-2024-45616: fix insufficient control of APDU buffer and its length
CVE-2024-45615: initialize uninitialized variables
CVE-2024-45617: fix insufficient or missing checking of return values
CVE-2024-45620: fix incorrect handling length of buffers or files in pkcs15init

References

https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1766598218.html

Affected packages

TuxCare:AlmaLinux:9.2 / opensc

Package

Name: opensc
Purl: pkg:rpm/tuxcare/opensc?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.22.0-2.el9_2.tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1766598218.json"