Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

SWIFT: POC Conversion

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Normal
Fix Version/s: rhel-10.0
Affects Version/s: rhel-10.0
Component/s: opensc
Labels:
- Accepted
- CY25Q1
- Committed
- rn-yml

Fixed in Build:
opensc-0.26.1-1.el10
Regression:
No
Severity:
Low
Epic Link:
CRYPTO-15212
Keywords:

Rebase
sprint_count:
1

AssignedTeam:
rhel-security-crypto
Sub-System Group:

ssg_security

Dev Target Milestone:
24
Internal Target Milestone:
26
Story Points:
1
ACKs Check:

QE ack, Dev ack
Target Version:

rhel-10.0
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
Yes
Sprint:
Crypto25Q1

Acceptance Criteria:

Hide

AC1) RegressionOnly

Show
AC1) RegressionOnly
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/141123
Gating Tests:

Not Needed
Test Coverage:

RegressionOnly

Release Note Type:
Enhancement
Release Note Text:

Hide
.OpenSC provided in version 0.26.1

RHEL 10 provides the `opensc` packages in the upstream version 0.26.1. The most notable enhancements and bug fixes are:

* Additional fixes for removing the time side-channel leakage related to the RSA PKCS #1 v1.5 padding removal after decryption
* Unified OpenSSL logging
* Support for the HKDF, RSA OEAP encryption, AES GCM, and AES GMAC mechanisms in the `pkcs11-tool` utility
* Fixes for CVEs targeting uninitialized memory problems: CVE-2024-45615, CVE-2024-45616, CVE-2024-45617, CVE-2024-45618, CVE-2024-45619, and CVE-2024-45620
* A fix of allocations of aligned memory that caused crashes in the Chromium web browser
* A fix of reading certificates in the TeleSec Chipcard Operating System (TCOS) card driver

Show
.OpenSC provided in version 0.26.1 RHEL 10 provides the `opensc` packages in the upstream version 0.26.1. The most notable enhancements and bug fixes are: * Additional fixes for removing the time side-channel leakage related to the RSA PKCS #1 v1.5 padding removal after decryption * Unified OpenSSL logging * Support for the HKDF, RSA OEAP encryption, AES GCM, and AES GMAC mechanisms in the `pkcs11-tool` utility * Fixes for CVEs targeting uninitialized memory problems: CVE-2024-45615, CVE-2024-45616, CVE-2024-45617, CVE-2024-45618, CVE-2024-45619, and CVE-2024-45620 * A fix of allocations of aligned memory that caused crashes in the Chromium web browser * A fix of reading certificates in the TeleSec Chipcard Operating System (TCOS) card driver
Release Note Status:
Done

Experience:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

A new fix-up version of OpenSC 0.26.1 will be released in upstream. It contains additional fix for page allocation causing Chromium browser to crash.

links to

RHBA-2024:141123 opensc bug fix and enhancement update

Assignee:: Veronika Hanulikova (Inactive)

Reporter:: Veronika Hanulikova (Inactive)

QA Contact:: George Pantelakis

Doc Contact:: Mirek Jahoda

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2024/12/17 9:55 AM

Updated:: 2025/05/13 8:14 AM

Resolved:: 2025/05/13 8:14 AM

Dev Target end:: 2025/02/03

Target end:: 2025/02/11

Next Planned Release Date:: 2025/05/13

Release Date:: 2025/05/13

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

Hide