First published: Thu Sep 05 2019(Updated: )
OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opensc Project Opensc | <=0.19.0 | |
Debian Debian Linux | =8.0 | |
Debian Debian Linux | =9.0 | |
Fedoraproject Fedora | =31 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2019-15945.
CVE-2019-15945 has a severity rating of 6.4 (medium).
The affected software for CVE-2019-15945 is OpenSC before version 0.20.0-rc1 and Debian Linux 8.0, 9.0, and Fedora 31.
CVE-2019-15945 is an out-of-bounds access vulnerability in OpenSC's decode_bit_string function in libopensc/asn1.c.
To fix CVE-2019-15945, update OpenSC to version 0.20.0-rc1 or later.