Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package opensc for openSUSE:Factory checked in at 2026-06-13 18:47:56 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/opensc (Old) and /work/SRC/openSUSE:Factory/.opensc.new.1981 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "opensc" Sat Jun 13 18:47:56 2026 rev:65 rq:1359045 version:0.27.1 Changes: -------- --- /work/SRC/openSUSE:Factory/opensc/opensc.changes 2026-04-01 19:53:08.515394202 +0200 +++ /work/SRC/openSUSE:Factory/.opensc.new.1981/opensc.changes 2026-06-13 18:49:51.003692561 +0200 @@ -1,0 +2,7 @@ +Thu Jun 11 11:40:26 UTC 2026 - Petr Gajdos <[email protected]> + +- added patches + CVE-2026-10275: global buffer overflow during key pair generation tests due to missing input validation [bsc#1267246] + * opensc-CVE-2026-10275.patch + +------------------------------------------------------------------- @@ -19 +26 @@ - configuration + configuration (CVE-2026-40528 [bsc#1266963]) New: ---- opensc-CVE-2026-10275.patch ----------(New B)---------- New: CVE-2026-10275: global buffer overflow during key pair generation tests due to missing input validation [bsc#1267246] * opensc-CVE-2026-10275.patch ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ opensc.spec ++++++ --- /var/tmp/diff_new_pack.kHkLLx/_old 2026-06-13 18:49:51.727722640 +0200 +++ /var/tmp/diff_new_pack.kHkLLx/_new 2026-06-13 18:49:51.727722640 +0200 @@ -33,6 +33,8 @@ Source3: opensc.module Patch0: opensc-gcc11.patch Patch1: opensc-docbook-xsl-fix.patch +# CVE-2026-10275: global buffer overflow during key pair generation tests due to missing input validation [bsc#1267246] +Patch2: opensc-CVE-2026-10275.patch BuildRequires: automake BuildRequires: docbook-xsl-stylesheets BuildRequires: libxslt ++++++ opensc-CVE-2026-10275.patch ++++++ >From 814f745b3b6d100295f65f1935edd33d520d33ab Mon Sep 17 00:00:00 2001 From: Frank Morgner <[email protected]> Date: Mon, 11 May 2026 11:00:28 +0200 Subject: [PATCH] pkcs11-tool: prevent buffer overflow Reported by @HMF2021 hippofu999 --- src/tools/pkcs11-tool.c | 6 ++++++ 1 file changed, 6 insertions(+) Index: opensc-0.27.1/src/tools/pkcs11-tool.c =================================================================== --- opensc-0.27.1.orig/src/tools/pkcs11-tool.c +++ opensc-0.27.1/src/tools/pkcs11-tool.c @@ -1342,6 +1342,8 @@ int main(int argc, char * argv[]) } if (opt_uri->id) { opt_object_id_len = opt_uri->id_len; + if (opt_object_id_len > sizeof(opt_object_id)) + util_fatal("URI's object ID too long"); memcpy(opt_object_id, opt_uri->id, opt_object_id_len); } } @@ -9617,6 +9619,10 @@ static CK_SESSION_HANDLE test_kpgen_cert return session; } opt_object_id_len = (size_t) i; + if (opt_object_id_len > sizeof(opt_object_id)) { + fprintf(stderr, "ERR: object ID too long\n"); + return session; + } memcpy(opt_object_id, tmp, opt_object_id_len); /* This is done in NSS */
