{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"Medium" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"opensc security update", "category":"general", "title":"Synopsis" }, { "text":"An update for opensc is now available for openEuler-24.03-LTS-SP1", "category":"general", "title":"Summary" }, { "text":"OpenSC provides a set of libraries and utilities to work with smart cards. Its main focus is on cards that support cryptographic operations, and facilitate their use in security applications such as authentication, mail encryption and digital signatures. OpenSC implements the standard APIs to smart cards, e.g. PKCS#11 API, Windows’ Smart Card Minidriver and macOS Tokend.\n\nSecurity Fix(es):\n\nOpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that would present the system with specially crafted responses to the APDUs. This issue has been patched in version 0.27.0.(CVE-2025-49010)\n\nOpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzz_pkcs15_reader harness causes OpenSC to perform an out-of-bounds heap read in the X.509/SPKI handling path. Specifically, sc_pkcs15_pubkey_from_spki_fields() allocates a zero-length buffer and then reads one byte past the end of that allocation. This issue has been patched in version 0.27.0.(CVE-2025-66037)", "category":"general", "title":"Description" }, { "text":"An update for opensc is now available for master/openEuler-20.03-LTS-SP4/openEuler-22.03-LTS-SP4/openEuler-24.03-LTS/openEuler-24.03-LTS-Next/openEuler-24.03-LTS-SP1/openEuler-24.03-LTS-SP2/openEuler-24.03-LTS-SP3/openEuler-24.03-LTS-SP4.\n\nopenEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"Medium", "category":"general", "title":"Severity" }, { "text":"opensc", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2026-2545", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2545" }, { "summary":"CVE-2025-49010", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-49010&packageName=opensc" }, { "summary":"CVE-2025-66037", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-66037&packageName=opensc" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49010" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2025-66037" }, { "summary":"openEuler-SA-2026-2545 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2026/csaf-openeuler-sa-2026-2545.json" } ], "title":"An update for opensc is now available for openEuler-24.03-LTS-SP1", "tracking":{ "initial_release_date":"2026-06-08T15:01:01+08:00", "revision_history":[ { "date":"2026-06-08T15:01:01+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2026-06-08T15:01:01+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2026-06-08T15:01:01+08:00", "id":"openEuler-SA-2026-2545", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"openEuler-24.03-LTS-SP1", "name":"openEuler-24.03-LTS-SP1" }, "name":"openEuler-24.03-LTS-SP1", "category":"product_version" } ], "category":"product_name" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-0.23.0-8.oe2403sp1.aarch64.rpm", "name":"opensc-0.23.0-8.oe2403sp1.aarch64.rpm" }, "name":"opensc-0.23.0-8.oe2403sp1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64.rpm", "name":"opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64.rpm" }, "name":"opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-debugsource-0.23.0-8.oe2403sp1.aarch64.rpm", "name":"opensc-debugsource-0.23.0-8.oe2403sp1.aarch64.rpm" }, "name":"opensc-debugsource-0.23.0-8.oe2403sp1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-help-0.23.0-8.oe2403sp1.aarch64.rpm", "name":"opensc-help-0.23.0-8.oe2403sp1.aarch64.rpm" }, "name":"opensc-help-0.23.0-8.oe2403sp1.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-0.23.0-8.oe2403sp1.src.rpm", "name":"opensc-0.23.0-8.oe2403sp1.src.rpm" }, "name":"opensc-0.23.0-8.oe2403sp1.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-0.23.0-8.oe2403sp1.x86_64.rpm", "name":"opensc-0.23.0-8.oe2403sp1.x86_64.rpm" }, "name":"opensc-0.23.0-8.oe2403sp1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64.rpm", "name":"opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64.rpm" }, "name":"opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-debugsource-0.23.0-8.oe2403sp1.x86_64.rpm", "name":"opensc-debugsource-0.23.0-8.oe2403sp1.x86_64.rpm" }, "name":"opensc-debugsource-0.23.0-8.oe2403sp1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP1" }, "product_id":"opensc-help-0.23.0-8.oe2403sp1.x86_64.rpm", "name":"opensc-help-0.23.0-8.oe2403sp1.x86_64.rpm" }, "name":"opensc-help-0.23.0-8.oe2403sp1.x86_64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-0.23.0-8.oe2403sp1.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "name":"opensc-0.23.0-8.oe2403sp1.aarch64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "name":"opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-debugsource-0.23.0-8.oe2403sp1.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "name":"opensc-debugsource-0.23.0-8.oe2403sp1.aarch64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-help-0.23.0-8.oe2403sp1.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "name":"opensc-help-0.23.0-8.oe2403sp1.aarch64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-0.23.0-8.oe2403sp1.src.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "name":"opensc-0.23.0-8.oe2403sp1.src as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-0.23.0-8.oe2403sp1.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "name":"opensc-0.23.0-8.oe2403sp1.x86_64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "name":"opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-debugsource-0.23.0-8.oe2403sp1.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "name":"opensc-debugsource-0.23.0-8.oe2403sp1.x86_64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS-SP1", "product_reference":"opensc-help-0.23.0-8.oe2403sp1.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64", "name":"opensc-help-0.23.0-8.oe2403sp1.x86_64 as a component of openEuler-24.03-LTS-SP1" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2025-49010", "notes":[ { "text":"OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that would present the system with specially crafted responses to the APDUs. This issue has been patched in version 0.27.0.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64" ], "details":"opensc security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2545" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":6.8, "vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2025-49010" }, { "cve":"CVE-2025-66037", "notes":[ { "text":"OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzz_pkcs15_reader harness causes OpenSC to perform an out-of-bounds heap read in the X.509/SPKI handling path. Specifically, sc_pkcs15_pubkey_from_spki_fields() allocates a zero-length buffer and then reads one byte past the end of that allocation. This issue has been patched in version 0.27.0.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64" ], "details":"opensc security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2545" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":6.8, "vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.aarch64", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.src", "openEuler-24.03-LTS-SP1:opensc-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debuginfo-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-debugsource-0.23.0-8.oe2403sp1.x86_64", "openEuler-24.03-LTS-SP1:opensc-help-0.23.0-8.oe2403sp1.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2025-66037" } ] }