OSV-2023-560

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-560

Published

2023-07-12T14:02:05.479616Z

Modified

2023-07-12T14:02:05.479901Z

Summary

Stack-buffer-overflow in sc_pkcs15_get_lastupdate

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60527

Crash type: Stack-buffer-overflow READ {*}
Crash state:
sc_pkcs15_get_lastupdate
generate_cache_filename
sc_pkcs15_read_cached_file

References

Affected packages

Type: GIT
Repo: https://github.com/OpenSC/OpenSC
Events: Introduced

df693351f8ca823d6e118ff751b649eeb3f540d5

Fixed

b17d4a4dfb02ac6f0476b280588bca022d989e0b

{
    "severity": "MEDIUM"
}

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opensc/OSV-2023-560.yaml"