suse · CVE-2010-4523

Quick triage

Priority: high Published: 2021-05-30 12:55:07 UTC Updated: 2026-04-18 20:06:16 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2010-4523 severity important: SUSE including 14 source package names (libopensc2-0.11.6-5.27.1, libopensc2-32bit-0.11.6-5.27.1, …), 28 product×package rows across 24 product lines (SUSE Linux Enterprise Desktop 12, SUSE Linux Enterprise Desktop 12 SP1, … (24 product lines)): Fixed 24, Known Not Affected 4.

Description:

Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to (1) card-acos5.c, (2) card-atrust-acos.c, and (3) card-starcos.c.

cvelogic Threat Intelligence