CVE List


Critical 7.5

An issue was discovered in the pam_p11 component 0.2.0 and 0.3.0 for OpenSC. If a smart card creates a signature with a length longer than 256 bytes, this triggers a buffer overflow. This may be the case for RSA keys with 4096 bits depending on the signature scheme.

Published September 6, 2019.

Affected software

Opensc Project Opensc

Reference links

Sign Up for Alerts