[pkg-opensc-maint] Bug#1139246: opensc: CVE-2026-10275
Salvatore Bonaccorso
carnil at debian.org
Sun Jun 7 16:39:34 BST 2026
Source: opensc
Version: 0.27.1-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/OpenSC/OpenSC/issues/3682
X-Debbugs-Cc: carnil at debian.org, Debian Security Team <team at security.debian.org>
Hi,
The following vulnerability was published for opensc.
CVE-2026-10275[0]:
| A flaw has been found in OpenSC up to 0.26.1. This affects the
| function test_kpgen_certwrite of the file src/tools/pkcs11-tool.c of
| the component pkcs11-tool Key Generation Module. This manipulation
| causes buffer overflow. The attack is possible to be carried out
| remotely. The complexity of an attack is rather high. It is
| indicated that the exploitability is difficult. The exploit has been
| published and may be used. Patch name:
| 814f745b3b6d100295f65f1935edd33d520d33ab. It is recommended to apply
| a patch to fix this issue.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2026-10275
https://www.cve.org/CVERecord?id=CVE-2026-10275
[1] https://github.com/OpenSC/OpenSC/issues/3682
[2] https://github.com/OpenSC/OpenSC/pull/3684
[3] https://github.com/OpenSC/OpenSC/commit/814f745b3b6d100295f65f1935edd33d520d33ab
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the pkg-opensc-maint
mailing list