cbcvebase.
CVE-2021-42782
published 2022-04-18

CVE-2021-42782: Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.

medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.

Affected

18 ranges
VendorProductVersion rangeFixed in
debianopensc< opensc 0.22.0-1 (bookworm)opensc 0.22.0-1 (bookworm)
fedoraprojectfedora
msrccbl2_opensc_0.22.0-1_on_cbl_mariner_2.0
opensc_projectopensc< 0.22.00.22.0
opensc_projectopensc
opensc_projectopensc>= 0 < 0.21.0-1+deb11u10.21.0-1+deb11u1
opensc_projectopensc>= 0 < 0.22.0-10.22.0-1
opensc_projectopensc>= 0 < 0.22.0-10.22.0-1
opensc_projectopensc>= 0 < 0.22.0-10.22.0-1
opensc_projectopensc>= 0 < 0.15.0-1ubuntu1+esm30.15.0-1ubuntu1+esm3
opensc_projectopensc>= 0 < 0.15.0-1ubuntu1+esm20.15.0-1ubuntu1+esm2
opensc_projectopensc>= 0 < 0.17.0-3ubuntu0.1~esm30.17.0-3ubuntu0.1~esm3
opensc_projectopensc>= 0 < 0.17.0-3ubuntu0.1~esm20.17.0-3ubuntu0.1~esm2
opensc_projectopensc>= 0 < 0.20.0-3ubuntu0.1~esm30.20.0-3ubuntu0.1~esm3
opensc_projectopensc>= 0 < 0.20.0-3ubuntu0.1~esm40.20.0-3ubuntu0.1~esm4
opensc_projectopensc>= 0 < 0.20.0-3ubuntu0.1~esm20.20.0-3ubuntu0.1~esm2
opensc_projectopensc>= 0 < 0.22.0-1ubuntu2+esm10.22.0-1ubuntu2+esm1
opensc_projectopensc>= 0 < 0.25.0~rc1-1ubuntu0.1~esm10.25.0~rc1-1ubuntu0.1~esm1

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
osv5.3MEDIUM