[Git][security-tracker-team/security-tracker][master] one more opensc issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Apr 1 09:54:40 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
67689ba1 by Moritz Mühlenhoff at 2026-04-01T10:53:39+02:00
one more opensc issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -949,8 +949,16 @@ CVE-2026-25704 (A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use
TODO: check
CVE-2026-1612 (AL-KO Robolinho Update Software has hard-coded AWS Access and Secret k ...)
NOT-FOR-US: AL-KO Robolinho Update Software
+CVE-2025-13763
+ - opensc 0.27.1-1
+ [trixie] - opensc <no-dsa> (Minor issue)
+ [bookworm] - opensc <no-dsa> (Minor issue)
+ NOTE: https://github.com/OpenSC/OpenSC/security/advisories/GHSA-2v44-fq35-98vv
+ NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2025-13763
CVE-2025-66215 (OpenSC is an open source smart card tools and middleware. Prior to ver ...)
- opensc 0.27.0~rc1-1
+ [trixie] - opensc <no-dsa> (Minor issue)
+ [bookworm] - opensc <no-dsa> (Minor issue)
NOTE: https://github.com/OpenSC/OpenSC/security/advisories/GHSA-q5fc-cw56-hwp2
NOTE: https://github.com/OpenSC/OpenSC/pull/3436
NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2025-66215
@@ -958,16 +966,22 @@ CVE-2025-66215 (OpenSC is an open source smart card tools and middleware. Prior
NOTE: Fixed by: https://github.com/OpenSC/OpenSC/commit/56bc5e9575965461d99a274be45d71c18ab6eae0 (0.27.0-rc1)
CVE-2025-66038 (OpenSC is an open source smart card tools and middleware. Prior to ver ...)
- opensc 0.27.0~rc1-1
+ [trixie] - opensc <no-dsa> (Minor issue)
+ [bookworm] - opensc <no-dsa> (Minor issue)
NOTE: https://github.com/OpenSC/OpenSC/security/advisories/GHSA-72x5-fwjx-2459
NOTE: Fixed by: https://github.com/OpenSC/OpenSC/commit/6db171bcb6fd7cb3b51098fefbb3b28e44f0a79c (0.27.0-rc1)
NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2025-66038
CVE-2025-66037 (OpenSC is an open source smart card tools and middleware. Prior to ver ...)
- opensc 0.27.1-1
+ [trixie] - opensc <no-dsa> (Minor issue)
+ [bookworm] - opensc <no-dsa> (Minor issue)
NOTE: https://github.com/OpenSC/OpenSC/security/advisories/GHSA-m58q-rmjm-mmfx
NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2025-66037
NOTE: Fixed by: https://github.com/OpenSC/OpenSC/commit/65fc211015cfcac27b10d0876054156c97225f50 (0.27.0)
CVE-2025-49010 (OpenSC is an open source smart card tools and middleware. Prior to ver ...)
- opensc 0.27.0~rc1-1
+ [trixie] - opensc <no-dsa> (Minor issue)
+ [bookworm] - opensc <no-dsa> (Minor issue)
NOTE: https://github.com/OpenSC/OpenSC/security/advisories/GHSA-q5cf-5wmx-9wh4
NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2025-49010
NOTE: Fixed by: https://github.com/OpenSC/OpenSC/commit/953986f65db61871bbbff72788d861d67d5140c6 (0.27.0-rc1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67689ba10c4232dc3e537f7d027ac9216a6a0457
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67689ba10c4232dc3e537f7d027ac9216a6a0457
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260401/a997d158/attachment.htm>
More information about the debian-security-tracker-commits
mailing list