A heap-based buffer overflow vulnerability was found in...
Low severity
Unreviewed
Published
Sep 10, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Sep 10, 2024
Published to the GitHub Advisory Database
Sep 10, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using the
pkcs15-init
tool may lead to out-of-bound rights, possibly resulting in arbitrary code execution.References