CVE-2023-40661

NameCVE-2023-40661
DescriptionSeveral memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a custom-crafted USB device or smart card to manipulate responses to APDUs. This manipulation can potentially allow compromise key generation, certificate loading, and other card management operations during enrollment.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-3668-1
Debian Bugs1055522

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
opensc (PTS)jessie, jessie (lts)0.16.0-3+deb8u3vulnerable
stretch (security), stretch (lts), stretch0.16.0-3+deb9u2vulnerable
buster (security), buster, buster (lts)0.19.0-1+deb10u3fixed
bullseye0.21.0-1vulnerable
bookworm0.23.0-0.3+deb12u1fixed
sid, trixie0.25.1-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
openscsourcejessie(unfixed)end-of-life
openscsourcestretch(unfixed)end-of-life
openscsourcebuster0.19.0-1+deb10u3DLA-3668-1
openscsourcebookworm0.23.0-0.3+deb12u1
openscsource(unstable)0.23.0-21055522

Notes

[bullseye] - opensc <no-dsa> (Minor issue)
https://github.com/OpenSC/OpenSC/issues/2792#issuecomment-1674806651
https://github.com/OpenSC/OpenSC/wiki/CVE-2023-40661
https://bugzilla.redhat.com/show_bug.cgi?id=2240913#c1
Search for package or bug name: Reporting problems