opensc-0.23.0-4.el9_3

エラータID: AXSA:2024-7558:04

Release date: 
Thursday, February 29, 2024 - 10:48
Subject: 
opensc-0.23.0-4.el9_3
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures.

Security Fix(es):

* OpenSC: Side-channel leaks while stripping encryption PKCS#1 padding (CVE-2023-5992)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-5992
A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.

Solution: 

Update packages.

CVEs: 
CVE-2023-5992
A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.
Additional Info: 

N/A

Download: 

SRPMS
  1. opensc-0.23.0-4.el9_3.src.rpm
    MD5: 0c6672caf1ffaa51c5df3391bac3a2c0
    SHA-256: 99e0bcbe04c08b43946f2bef8b13c52a774e43442bbaaf56a24fe68d9bbe798f
    Size: 2.32 MB

Asianux Server 9 for x86_64
  1. opensc-0.23.0-4.el9_3.i686.rpm
    MD5: 2180681c42a6509e636775bc1a38b680
    SHA-256: c9249ca792d5f3533665d5c1dc36cd6ea569bf8610869c830d28d4476e966462
    Size: 1.29 MB
  2. opensc-0.23.0-4.el9_3.x86_64.rpm
    MD5: 827407a19cb735e9d64474785b6618e9
    SHA-256: 4afcb9eb8846f236fadcb5c160366c4854da9cfd5ee490777af14e894830bc5c
    Size: 1.29 MB