OSV-2022-773

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opensc/OSV-2022-773.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-773
Published
2022-08-24T00:00:17.518353Z
Modified
2022-08-24T00:00:17.518621Z
Summary
Heap-double-free in sc_pkcs15_encode_df
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50536

Crash type: Heap-double-free
Crash state:
sc_pkcs15_encode_df
sc_pkcs15init_update_any_df
sc_pkcs15init_add_object
References

Affected packages

OSS-Fuzz / opensc

Package

Name
opensc
Purl
pkg:generic/opensc

Affected ranges

Type
GIT
Repo
https://github.com/OpenSC/OpenSC
Events
Introduced
bec4f63c5b8308d7fdca842c5c0b62c3491d106a
Fixed
be7dd6fe65057acb47e2e7499d5f7bae228723c7

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "fa2eab861714a64371a3e2317e096862f1d9e4c8:be7dd6fe65057acb47e2e7499d5f7bae228723c7"
}