OSV-2020-2222

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opensc/OSV-2020-2222.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-2222
Published
2020-12-04T00:00:16.472882Z
Modified
2022-04-13T03:04:41.564448Z
Summary
Heap-double-free in sc_pkcs15_free_tokeninfo
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28185

Crash type: Heap-double-free
Crash state:
sc_pkcs15_free_tokeninfo
sc_pkcs15_card_free
fuzz_pkcs15_reader.c
References

Affected packages

OSS-Fuzz / opensc

Package

Name
opensc
Purl
pkg:generic/opensc

Affected ranges

Type
GIT
Repo
https://github.com/OpenSC/OpenSC
Events
Introduced
b02da8348be97d4b24081783f6af46757373bc3e
Fixed
f015746d22d249642c19674298a18ad824db0ed7

Affected versions

0.*

0.21.0
0.21.0-rc1
0.21.0-rc2

Ecosystem specific 

{
    "severity": "HIGH"
}