[Buildroot] [PATCH 1/1] package/opensc: security bump to version 0.24.0
Peter Korsgaard
peter at korsgaard.com
Wed Jan 10 09:45:29 UTC 2024
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:
> - Drop patches (already in version) and so drop autoreconf
> - Fix the following security issues:
> - CVE-2023-40660: Fix Potential PIN bypass
> - CVE-2023-40661: Important dynamic analyzers reports
> - CVE-2023-4535: Out-of-bounds read in MyEID driver handling
> encryption using symmetric keys
> https://github.com/OpenSC/OpenSC/releases/tag/0.24.0
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
Committed to 2023.02.x and 2023.11.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list