OSV-2021-1017

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opensc/OSV-2021-1017.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-1017
Published
2021-07-16T00:00:22.598607Z
Modified
2022-04-13T03:04:41.569910Z
Summary
Stack-buffer-overflow in piv_compute_signature
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36200

Crash type: Stack-buffer-overflow WRITE {*}
Crash state:
piv_compute_signature
sc_compute_signature
use_key
References

Affected packages

OSS-Fuzz / opensc

Package

Name
opensc
Purl
pkg:generic/opensc

Affected ranges

Type
GIT
Repo
https://github.com/OpenSC/OpenSC
Events
Introduced
4119b2c3e7eadf0bccb1a3592ded897ce6619121
Fixed
456ac566938a1da774db06126a2fa6c0cba514b3

Affected versions

0.*

0.22.0-rc1
0.22.0-rc2

Ecosystem specific 

{
    "severity": "HIGH"
}