OSV-2023-586

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2023-586

Published

2023-07-19T14:00:35.841154Z

Modified

2023-07-19T14:00:35.841409Z

Summary

Heap-buffer-overflow in setcos_create_key

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60672

Crash type: Heap-buffer-overflow READ 1
Crash state:
setcos_create_key
sc_pkcs15init_generate_key
do_generate_key

References

Affected packages

Type: GIT
Repo: https://github.com/OpenSC/OpenSC
Events: Introduced

22f73781706a293d10ebe982ece863a73fd62bf3

Fixed

440ca666eff10cc7011901252d20f3fc4ea23651

{
    "severity": "MEDIUM"
}