From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from smtp1.osuosl.org (smtp1.osuosl.org [140.211.166.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id A8180CE7A89 for ; Mon, 25 Sep 2023 07:56:45 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp1.osuosl.org (Postfix) with ESMTP id 4648381F23; Mon, 25 Sep 2023 07:56:45 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp1.osuosl.org 4648381F23 X-Virus-Scanned: amavisd-new at osuosl.org Received: from smtp1.osuosl.org ([127.0.0.1]) by localhost (smtp1.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Edf9uLfXIW1l; Mon, 25 Sep 2023 07:56:44 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by smtp1.osuosl.org (Postfix) with ESMTP id 7B97A81F1B; Mon, 25 Sep 2023 07:56:43 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp1.osuosl.org 7B97A81F1B Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137]) by ash.osuosl.org (Postfix) with ESMTP id 886751BF397 for ; Mon, 25 Sep 2023 07:56:41 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id 5F0FF418A7 for ; Mon, 25 Sep 2023 07:56:41 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp4.osuosl.org 5F0FF418A7 X-Virus-Scanned: amavisd-new at osuosl.org Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i9iA6tr6Ts6T for ; Mon, 25 Sep 2023 07:56:40 +0000 (UTC) Received: from relay9-d.mail.gandi.net (relay9-d.mail.gandi.net [IPv6:2001:4b98:dc4:8::229]) by smtp4.osuosl.org (Postfix) with ESMTPS id 64333409C3 for ; Mon, 25 Sep 2023 07:56:40 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.11.0 smtp4.osuosl.org 64333409C3 Received: by mail.gandi.net (Postfix) with ESMTPSA id B363BFF806; Mon, 25 Sep 2023 07:56:36 +0000 (UTC) Received: from peko by dell.be.48ers.dk with local (Exim 4.94.2) (envelope-from ) id 1qkgSI-002YdT-6v; Mon, 25 Sep 2023 09:56:34 +0200 From: Peter Korsgaard To: Fabrice Fontaine References: <20230919204910.444965-1-fontaine.fabrice@gmail.com> Date: Mon, 25 Sep 2023 09:56:34 +0200 In-Reply-To: <20230919204910.444965-1-fontaine.fabrice@gmail.com> (Fabrice Fontaine's message of "Tue, 19 Sep 2023 22:49:10 +0200") Message-ID: <87r0mmd6tp.fsf@48ers.dk> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 X-GND-Sasl: peter@korsgaard.com Subject: Re: [Buildroot] [PATCH 1/1] package/opensc: fix CVE-2023-2977 X-BeenThere: buildroot@buildroot.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: buildroot@buildroot.org Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: buildroot-bounces@buildroot.org Sender: "buildroot" >>>>> "Fabrice" == Fabrice Fontaine writes: > A vulnerability was found in OpenSC. This security flaw cause a buffer > overrun vulnerability in pkcs15 cardos_have_verifyrc_package. The > attacker can supply a smart card package with malformed ASN1 context. > The cardos_have_verifyrc_package function scans the ASN1 buffer for 2 > tags, where remaining length is wrongly caculated due to moved starting > pointer. This leads to possible heap-based buffer oob read. In cases > where ASAN is enabled while compiling this causes a crash. Further info > leak or more damage is possible. > Signed-off-by: Fabrice Fontaine Committed to 2023.02.x, 2023.05.x and 2023.08.x, thanks. -- Bye, Peter Korsgaard _______________________________________________ buildroot mailing list buildroot@buildroot.org https://lists.buildroot.org/mailman/listinfo/buildroot