opensc-0.20.0-8.el8_9

エラータID: AXSA:2024-7554:03

Release date: 
Thursday, February 29, 2024 - 10:29
Subject: 
opensc-0.20.0-8.el8_9
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures.

Security Fix(es):

* OpenSC: Side-channel leaks while stripping encryption PKCS#1 padding (CVE-2023-5992)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-5992
A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.

Solution: 

Update packages.

CVEs: 
CVE-2023-5992
A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.
Additional Info: 

N/A

Download: 

SRPMS
  1. opensc-0.20.0-8.el8_9.src.rpm
    MD5: e270c79ec3855c46bcfbc5c6a3b11812
    SHA-256: 75c1c5505a5bb99bd10b4cc34b90d8565594b6d70e31429c99c4bc90aa54e2e5
    Size: 2.14 MB

Asianux Server 8 for x86_64
  1. opensc-0.20.0-8.el8_9.i686.rpm
    MD5: 498ddc9e662ac27ee5be93aea614a91c
    SHA-256: b5f3384763a1e392f9267c166e011cea7221ac5c5f97e2ca32774fe00d81b4db
    Size: 1.29 MB
  2. opensc-0.20.0-8.el8_9.x86_64.rpm
    MD5: a071f60526f401406ad49c0f7e34653d
    SHA-256: a6e125eabdabc72174256a9f5627fd70449c08c6a913b98032b42ba989d9009e
    Size: 1.27 MB