SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for opensc-0.19.0-lp152.3.3.1.i586.rpm :

* Sun Mar 21 2021 Jason Sikes - bsc#1177380 - VUL-0: CVE-2020-26571
* gemsafe GPK smart card software driver stack-based buffer overflow
* opensc-0_19_0-CVE-2020-26571.patch- bsc#1158307 - VUL-1: CVE-2019-19480
* improper free operation in sc_pkcs15_decode_prkdf_entry
* opensc-0_19_0-CVE-2019-19480.patch- bsc#1149747 – VUL-1: CVE-2019-15946
* out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry
* opensc-0_19_0-CVE-2019-15946.patch- bsc#1149746 – VUL-1: CVE-2019-15945
* out-of-bounds access of an ASN.1 Bitstring in decode_bit_string
* opensc-0_19_0-CVE-2019-15945.patch- bsc#1158256 – VUL-1: CVE-2019-19479
* incorrect read operation during parsing of a SETCOS file attribute
* opensc-0_19_0-CVE-2019-19479.patch- bsc#1170809 – VUL-1: CVE-2019-20792
* double free in coolkey_free_private_data
* opensc-0_19_0-CVE-2019-20792.patch- bsc#1177378 - VUL-0: CVE-2020-26572
* Prevent out of bounds write
* opensc-0_19_0-CVE-2020-26572.patch
* Mon Mar 15 2021 Jason Sikes - Fix buffer overflow in sc_oberthur_read_file
* bsc#1177364
* CVE-2020-26570
* Added opensc-0_19_0-CVE-2020-26570.patch
* Tue Feb 26 2019 Karol Babioch :- Update to version 0.19.0
* Fixed multiple security problems (out of bound writes/reads):
* CVE-2018-16391 (bsc#1106998)
* CVE-2018-16392 (bsc#1106999)
* CVE-2018-16393 (bsc#1108318)
* CVE-2018-16418 (bsc#1107039)
* CVE-2018-16419 (bsc#1107107)
* CVE-2018-16420 (bsc#1107097)
* CVE-2018-16421 (bsc#1107049)
* CVE-2018-16422 (bsc#1107038)
* CVE-2018-16423 (bsc#1107037)
* CVE-2018-16424 (bsc#1107036)
* CVE-2018-16425 (bsc#1107035)
* CVE-2018-16426 (bsc#1107034)
* CVE-2018-16427 (bsc#1107033)
* Drop patches: opensc-fixed-out-of-bounds-reads.patch opensc-fixed-out-of-bounds-writes.patch opensc-iasecc-fixed-unbound-recursion.patch opensc-added-bounds-checking.patch
* Workaround cards returning short signatures without leading zeroes
* Distribute minimal opensc.conf
* `pkcs11_enable_InitToken made` global configuration option
* Modify behavior of `OPENSC_DRIVER` environment variable to restrict driver list instead of forcing one driver and skipping vital parts of configuration
* Removed configuration options `zero_ckaid_for_ca_certs`, `force_card_driver`, `reopen_debug_file`, `paranoid-memory`
* Generalized configuration option `ignored_readers`
* If card initialization fails, continue card detection with other card drivers
* reader-pcsc: allow fixing the length of a PIN
* fixed crash during `C_WaitForSlotEvent`
* Allow cancelling the PIN pad prompt before starting the reader transaction. Whether to start the transaction immediately or not is user-configurable for each application
* opensc-notify
* add Exit button to tray icon
* User better description (GenericName) and a generic application icon
* Do not display in the application list- Removed patches included upstream now:
* opensc-desktop.patch
* opensc-desktop2.patch
* opensc-bash-completions.patch- Applied spec-cleaner
* Tue Oct 09 2018 Marketa Calabkova - fixed multiple security problems (out of bound writes/reads): bsc#1104812 CVE-2018-16391 (bsc#1106998) CVE-2018-16392 (bsc#1106999) CVE-2018-16393 (bsc#1108318) CVE-2018-16418 (bsc#1107039) CVE-2018-16419 (bsc#1107107) CVE-2018-16420 (bsc#1107097) CVE-2018-16421 (bsc#1107049) CVE-2018-16422 (bsc#1107038) CVE-2018-16423 (bsc#1107037) CVE-2018-16424 (bsc#1107036) CVE-2018-16425 (bsc#1107035) CVE-2018-16426 (bsc#1107034) CVE-2018-16427 (bsc#1107033)- added patches: opensc-fixed-out-of-bounds-reads.patch opensc-fixed-out-of-bounds-writes.patch opensc-iasecc-fixed-unbound-recursion.patch opensc-added-bounds-checking.patch (fixes security issue caused by opensc-fixed-out-of-bounds-writes.patch) (see upstream commits for more informations)
* Tue Jul 10 2018 sbrabecAATTsuse.com- Update to version 0.18.0:
* Further improvements of PIN support.
* Large number of improvements and fixes (boo#1097951, boo#1100501).
* See /usr/share/doc/packages/opensc/NEWS for complete list.- Add opensc-desktop.patch, opensc-desktop2.patch and opensc-bash-completions.patch.
* Mon Jan 01 2018 michaelAATTstroeder.com- update to version 0.17.0:
* support for new cards
* PIN support enhancemets
* added .pc file
* builds with OpenSSL 1.1.0 (1074799)
* See /usr/share/doc/packages/opensc/NEWS for complete list.
* Tue Jul 18 2017 tchvatalAATTsuse.com- Switch to tarball fetching from github- Few small cleanups
* Tue Nov 22 2016 sbrabecAATTsuse.com- Add baselibs.conf to provide 32-bit PKCS11 plugins (bsc#996047).- Drop opensc-ADVISORIES. There is no new advisory since 2009.
* Tue Jul 05 2016 t.grunerAATTkatodev.de- update to version 0.16.0- remove fix (issue 505)- clean up spec-file
* Thu Jul 30 2015 bwachter-pkgAATTlart.info- update to version 0.15.0- register with p11-kit (https://www.opensc-project.org/opensc/ticket/390)
* Mon Feb 16 2015 michaelAATTstroeder.com- update to version 0.14.0
  
ICM