Bug 1107038 - (CVE-2018-16422) VUL-1: CVE-2018-16422: opensc: single byte buffer overflow when handling responses from an esteid Card insc_pkcs15emu_esteid_init in libopensc/pkcs15-esteid.c
(CVE-2018-16422)
VUL-1: CVE-2018-16422: opensc: single byte buffer overflow when handling resp...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Normal
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/213697/
CVSSv3:SUSE:CVE-2018-16422:4.6:(AV:P/...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-09-04 09:32 UTC by Alexander Bergmann
Modified: 2018-12-11 15:43 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Alexander Bergmann 2018-09-04 09:32:05 UTC
CVE-2018-16422

A single byte buffer overflow when handling responses from an esteid Card in
sc_pkcs15emu_esteid_init in libopensc/pkcs15-esteid.c in OpenSC before
0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause
a denial of service (application crash) or possibly have unspecified other
impact.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-16422
https://github.com/OpenSC/OpenSC/commit/360e95d45ac4123255a4c796db96337f332160ad#diff-d64c08c80437cf0006ada91e50f20ba0
Comment 1 Marcus Meissner 2018-10-02 12:09:09 UTC
reassign to (new/old) maitnainer
Comment 8 Swamp Workflow Management 2018-10-16 13:22:53 UTC
An update workflow for this issue was started.
This issue was rated as moderate.
Please submit fixed packages until 2018-10-30.
When done, reassign the bug to security-team@suse.de.
https://swamp.suse.de/webswamp/wf/64158
Comment 9 Swamp Workflow Management 2018-11-05 20:10:48 UTC
SUSE-SU-2018:3621-1: An update that solves 8 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1104812,1106998,1106999,1107033,1107037,1107038,1107039,1107107,1108318
CVE References: CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16422,CVE-2018-16423,CVE-2018-16427
Sources used:
SUSE Linux Enterprise Software Development Kit 11-SP4 (src):    opensc-0.11.6-5.27.3.1
SUSE Linux Enterprise Server 11-SP4 (src):    opensc-0.11.6-5.27.3.1
SUSE Linux Enterprise Debuginfo 11-SP4 (src):    opensc-0.11.6-5.27.3.1
Comment 10 Swamp Workflow Management 2018-11-05 20:12:31 UTC
SUSE-SU-2018:3622-1: An update that solves 10 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1104812,1106998,1106999,1107033,1107034,1107037,1107038,1107039,1107097,1107107,1108318
CVE References: CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16420,CVE-2018-16422,CVE-2018-16423,CVE-2018-16426,CVE-2018-16427
Sources used:
SUSE Linux Enterprise Server 12-SP3 (src):    opensc-0.13.0-3.3.2
SUSE Linux Enterprise Desktop 12-SP3 (src):    opensc-0.13.0-3.3.2
Comment 11 Swamp Workflow Management 2018-11-05 20:19:01 UTC
SUSE-SU-2018:3629-1: An update that solves 13 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1104812,1106998,1106999,1107033,1107034,1107035,1107036,1107037,1107038,1107039,1107049,1107097,1107107,1108318
CVE References: CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16420,CVE-2018-16421,CVE-2018-16422,CVE-2018-16423,CVE-2018-16424,CVE-2018-16425,CVE-2018-16426,CVE-2018-16427
Sources used:
SUSE Linux Enterprise Module for Basesystem 15 (src):    opensc-0.18.0-3.8.1
Comment 12 Andreas Stieger 2018-11-09 20:13:27 UTC
done
Comment 13 Swamp Workflow Management 2018-11-09 23:18:39 UTC
openSUSE-SU-2018:3701-1: An update that solves 10 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1104812,1106998,1106999,1107033,1107034,1107037,1107038,1107039,1107097,1107107,1108318
CVE References: CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16420,CVE-2018-16422,CVE-2018-16423,CVE-2018-16426,CVE-2018-16427
Sources used:
openSUSE Leap 42.3 (src):    opensc-0.13.0-9.3.1
Comment 14 Swamp Workflow Management 2018-11-09 23:28:46 UTC
openSUSE-SU-2018:3716-1: An update that solves 13 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1104812,1106998,1106999,1107033,1107034,1107035,1107036,1107037,1107038,1107039,1107049,1107097,1107107,1108318
CVE References: CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16420,CVE-2018-16421,CVE-2018-16422,CVE-2018-16423,CVE-2018-16424,CVE-2018-16425,CVE-2018-16426,CVE-2018-16427
Sources used:
openSUSE Leap 15.0 (src):    opensc-0.18.0-lp150.2.9.1
Comment 15 Swamp Workflow Management 2018-12-10 17:15:18 UTC
SUSE-SU-2018:3622-2: An update that solves 10 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1104812,1106998,1106999,1107033,1107034,1107037,1107038,1107039,1107097,1107107,1108318
CVE References: CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16420,CVE-2018-16422,CVE-2018-16423,CVE-2018-16426,CVE-2018-16427
Sources used:
SUSE Linux Enterprise Server 12-SP4 (src):    opensc-0.13.0-3.3.2
SUSE Linux Enterprise Desktop 12-SP4 (src):    opensc-0.13.0-3.3.2