OpenSC 0.27.0 release

Author: Jakuje

CVE-2025-13763.md

@@ -0,0 +1,93 @@
+# [CVE-2025-13763](https://nvd.nist.gov/vuln/detail/CVE-2025-13763):  Various uninitialized memory usage during card detection in libopensc
+
+The reported issues are part of the libopensc library, which makes them
+accessible from OpenSC tools, PKCS#11 module, minidriver, or CTK.
+The attack requires a crafted USB device or smart card that would present
+the system with specially crafted responses to the APDUs, so they are
+considered high complexity and low severity.
+
+The uninitialized variables were reflected in these functions:
+
+- [authentic_parse_credential_data](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-authentic.c#L300)
+  - The function `authentic_get_tagged_data()` could return 0 length data,
+    but it is never checked before dereferencing the data pointer.
+  - fixed with dc4a1f2617867eb3b2c170ec51dd2bbae0212480
+- [cac_is_cert](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-cac.c#L237)
+  - The object comparison could use some of the unitialized object members.
+  - fixed with 61985ce021b386b11a29eb4d27c6a7ae00e8e2a6
+- [cac_read_binary](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-cac.c#L526)
+  - the function is merging the TagLength file with the Value files.
+    Inconsistencies are ignored, but the resulting object has full
+    length even if some part is uninitialized, which can be used later
+    on by the driver.
+  - fixed with 35b2f54212db0d6adcc337e456ddc728eeabd044
+- [cac_get_properties](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-cac.c#L932)
+  - the function might not be setting all the members of the properties
+    structure the caller expects. Initializing it before invocation
+    avoids this problem.
+  - fixed with 5b0cda30e8226c41c69735f95234d98eda1be550
+- [esteid_select_file](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-esteid2018.c#L122)
+  - the select file assumes the APDU returns the whole requested length,
+    which might not be the case. When card returns less data,
+    the uninitialized data is attempted to get parsed as FCI structure.
+  - fixed with bd8687b40f6948278ec115aa7a19ee7274760ce0
+- [gemsafe_process_fci](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-gemsafeV1.c#L350)
+  - The `sc_asn1_find_tag()` could return 0-lenght value, which is processed
+    without checking for the length.
+  - fixed with 267111f2e3b766e5ad985105cd1a3416d569ff89
+- [iasecc_emulate_fcp](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/card-iasecc.c#L862)
+  - emulating the FCP object could result in too long resplen in the emulated
+    APDU returned to a caller, which might read uninitialized data from there.
+  - fixed with ab568f0a420931d5372bc8657f4024ca6d0e3285
+- [iasecc_se_parse](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/iasecc-sdo.c#L328)
+  - the function could use uninitialized memory behind the buffer bounds
+    without proper check.
+  - fixed with 7aafe6f8c4a962d8ee9208a62272b6b38d6db9f6, a89dff3271da2eccd834553a4c0dfb7c543657c5
+- [get_cert_len](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/pkcs15-atrust-acos.c#L81)
+  - incorrect return value check could cause use of uninitialized data
+  - fixed with 7e3dcae1d14e898dfed00ce8aa1d1bfeaee7c936
+- [coolkey_get_attribute_bytes_alloc](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/pkcs15-coolkey.c#L212)
+  - Unchecked size of return buffer could cause zero-length allocations
+    and following code dereferencing this variable.
+  - fixed with 40fbddc46e026618b6a3d0a03e62adc1fb5ca956
+- [sc_pkcs15emu_openpgp_init](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/pkcs15-openpgp.c#L318)
+  - uninitilized variable could cause comparison against this value,
+    with unexpected consequences.
+  - fixed with 29122ae779fa8ecb201b0c0b3bdad058b9540262
+- [sc_pkcs15_pubkey_from_spki_fields](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/pkcs15-pubkey.c#L1342)
+  - the callback function could be called with 0-length buffer,
+    resulting in 0-lenght allocations and dereferencing of this value.
+  - fixed with 7000dee0eb7d35246b5e180b39bb4e03b11f1c47
+- [get_cert_len](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/pkcs15-starcert.c#L91)
+  - the function accesses the uninitialized memory when the card returns
+    too short response.
+  - fixed with 7e3dcae1d14e898dfed00ce8aa1d1bfeaee7c936
+- [insert_cert](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/libopensc/pkcs15-tcos.c#L81)
+  - Parsing of the returned buffer could use uninitialized memory when
+    the card responses with too short data.
+  - fixed with 263d29e2f8baf33f329849c82ba9c08ec45f1ad7
+
+There are few more cases, that are accessible only during the card
+enrollment/initialization and therefore they are not exploitable on generic
+end-user system:
+
+- [entersafe_init_card](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/pkcs15init/pkcs15-entersafe.c#L80)
+  - Uninitialized members could be used in the APDU,
+    resulting in unexpected behavior.
+  - fixed with f29e937aa77ad000cd65cc1806972203bd3b0f43
+- [cosm_generate_key](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/pkcs15init/pkcs15-oberthur.c#L692)
+  - Uninitialized member `pubkey->u.rsa.modulus.len` is used later
+    in the code execution.
+  - fixed with a998551ca19f2bd0e664c59d415675c062e3920b
+- [build_argv](https://github.com/OpenSC/OpenSC/blob/23dcca082fa35eb454f8a2add163dfd506eab434/src/pkcs15init/profile.c#L2090)
+  - Ignoring return value of `get_inner_word()a could cause use
+    of uninitilizad variables later.
+  - fixed with c1d3ebb130f909eff2aef1924f28f3d4c04786a6
+
+Affected versions: all before 0.27.0
+
+Originally reported by Matteo Marini (Sapienza University of Rome).
+Some of the issues were also reported independently by Aldo Ristori via OSS-Fuzz.
+Patches provided by Jakub Jelen.
+
+CVSS:3.1[/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L) (3.9)

CVE-2025-49010.md

@@ -0,0 +1,30 @@
+# [CVE-2025-49010](https://nvd.nist.gov/vuln/detail/CVE-2025-49010):  Possible write beyond buffer bounds during processing of GET RESPONSE APDU
+
+The malicious smart card could return 0-length data in GET RESPONSE APDU,
+causing the driver writing behind the caller provided buffer in
+`sc_get_response()` function.
+
+Affected are the following card drivers:
+skeid, cardos, cyberflex, gemsafeV1, starcos, tcos, oberthur, authentic, iasecc, belpic, entersafe,
+rutoken_ecp, myeid, dnie, MaskTech, esteid2018, idprime, edo, coolkey, muscle, sc-hsm, mcrd, setcos,
+PIV-II, cac, itacns, isoApplet, gids, openpgp, jpki, npa, cac1, nqapplet, eOI, default
+
+The reported issue is part of the libopensc library, which makes them
+accessible from OpenSC tools, PKCS#11 module, minidriver, or CTK.
+The attack requires a crafted USB device or smart card that would present
+the system with specially crafted responses to the APDUs, so this is
+considered high complexity and low severity.
+
+- [sc_get_response](https://github.com/OpenSC/OpenSC/blob/e88272d556f51dde2e789cf8d9afafd8b490cf67/src/libopensc/apdu.c#L481)
+  - The `iso7816_get_response()` and `nqapplet_get_response()` returned
+    early if the returned APDU did not have any data without adjusting
+    the `count` return parameter to reflect this legnth.
+  - fixed with 953986f65db61871bbbff72788d861d67d5140c6
+
+Affected versions: all before 0.27.0
+
+Originally reported by Oss-fuzz.
+Patches provided by Frank Morgner.
+
+CVSS:3.1[/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L) (3.8)
+

CVE-2025-66037.md

@@ -0,0 +1,25 @@
+# [CVE-2025-66037](https://nvd.nist.gov/vuln/detail/CVE-2025-66037):  Possible buffer overrun while parsing SPKI
+
+The malicious smart card could return malicious public key object with
+SPKI size of 0, resulting of reading behind the 0-length buffer, potentially
+causing either crash or unexpected behavior of application using OpenSC.
+
+The reported issue is part of the libopensc library, which makes them
+accessible from OpenSC tools, PKCS#11 module, minidriver, or CTK.
+The attack requires a crafted USB device or smart card that would present
+the system with specially crafted responses to the APDUs, so this is
+considered high complexity and low severity.
+
+- [sc_pkcs15_pubkey_from_spki_fields](https://github.com/OpenSC/OpenSC/blob/220bc82e08e71d720d742ce2e8713dc9af14dade/src/libopensc/pkcs15-pubkey.c#L1342)
+  - The function is provided with a buffer parsed from the outer ASN.1
+    structure, which can be a 0-length buffer. The buffer is copied
+    with malloc & memcpy and then the first byte is tested without
+    checking the length is at least one byte.
+  - fixed with 65fc211015cfcac27b10d0876054156c97225f50
+
+Affected versions: all before 0.27.0
+
+Originally reported by Aldo Ristori via OSS-Fuzz.
+Patches provided by Jakub Jelen.
+
+CVSS:3.1[/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L) (3.9)

CVE-2025-66038.md

@@ -0,0 +1,27 @@
+# [CVE-2025-66038](https://nvd.nist.gov/vuln/detail/CVE-2025-66038):  Possible read beyond buffer bounds when parsing historical bytes in PIV driver
+
+The malicious smart card could return malicious Answer to Reset (ATR) with
+invalid Compact-TLV encoding in the historical bytes, resulting in
+reading behind the buffer bounds, potentially causing either crash
+or unexpected behavior of application using OpenSC.
+
+The reported issue is part of the libopensc library, which makes them
+accessible from OpenSC tools, PKCS#11 module, minidriver, or CTK.
+The attack requires a crafted USB device or smart card that would present
+the system with specially crafted responses to the APDUs, so this is
+considered high complexity and low severity.
+
+- [sc_compacttlv_find_tag](https://github.com/OpenSC/OpenSC/blob/1243e53ebdc48521bb6d462acf1a1ed728cadbe2/src/libopensc/sc.c#L1068)
+  - The function is provided with buffer and its bounds, but the bounds
+    of parsed data are checked only if the searched tag has its expected
+    length (low nibble). In other cases, the bounds are ignored and function
+    can return the tag length larger than the provided buffer.
+  - fixed with a20b91adc2fc66785c0df98abc8ef456c0eaab9d
+
+Affected versions: all before 0.27.0
+
+Originally reported by Harrison Green, from CMU. This testcase was discovered by STITCH, an autonomous fuzzing system.
+Patches provided by Jakub Jelen.
+
+CVSS:3.1[/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L) (3.9)
+

CVE-2025-66215.md

@@ -0,0 +1,27 @@
+# [CVE-2025-66215](https://nvd.nist.gov/vuln/detail/CVE-2025-66215):  Possible write beyond buffer bounds in oberthur driver
+
+The malicious smart card could return larger data then expected
+by the oberthur driver, resulting in write behind the buffer bounds
+potentially causing crash, data corruption or unexpected behavior
+of application using OpenSC.
+
+The reported issue is part of the libopensc library, which makes them
+accessible from OpenSC tools, PKCS#11 module, minidriver, or CTK.
+The attack requires a crafted USB device or smart card that would present
+the system with specially crafted responses to the APDUs, so this is
+considered high complexity and low severity.
+
+- [auth_compute_signature](https://github.com/OpenSC/OpenSC/blob/2742f82e74dbed7e781170cad0fdc4187dc88b80/src/libopensc/card-oberthur.c#L1130)
+  - The function is constructing an APDU request, but sets inconsisten
+    respons buffer and response buffer length values. When the malicious
+    smart card would return more data than expected, the reader driver
+    would write behind the buffer bounds on stack, likely malforming
+    other data on stack.
+  - fixed with a4bbf8a631537a4c0083b264095ed1cd36d307ab and 56bc5e9575965461d99a274be45d71c18ab6eae0
+
+Affected versions: all before 0.27.0
+
+Originally reported by Oss-fuzz.
+Patches provided by Frank Morgner.
+
+CVSS:3.1[/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L) (3.8)

Home.md

@@ -9,6 +9,8 @@ Do NOT attempt to add them here or use any links from wiki to download software
 
 ## News
 
+* 30.03.2026: **SECURITY**: Data handling issues prior to 0.27.0 (CVE-2025-49010, CVE-2025-66037, CVE-2025-66038, CVE-2025-13763, CVE-2025-66215), see [security advisories](OpenSC-security-advisories).
+* 30.03.2026: [OpenSC 0.27.0](https://github.com/OpenSC/OpenSC/releases/tag/0.27.0) is available.
 * 14.01.2025: [OpenSC 0.26.1](https://github.com/OpenSC/OpenSC/releases/tag/0.26.1) is available.
 * 13.11.2024: [OpenSC 0.26.0](https://github.com/OpenSC/OpenSC/releases/tag/0.26.0) is available.
 * 05.04.2024: [OpenSC 0.25.1](https://github.com/OpenSC/OpenSC/releases/tag/0.25.1) is available.

OpenSC-security-advisories.md

@@ -2,6 +2,13 @@
 
 Software often contains bugs, so does OpenSC. Be aware of the following security issues (in addition to overall [security considerations](Security-Considerations)) and upgrade to latest released version if needed.
 
+* 30.03.2026 Several data handling issues affecting releases before 0.27.0
+  * [CVE-2025-49010](CVE-2025-49010): Possible write beyond buffer bounds during processing of GET RESPONSE APDU
+  * [CVE-2025-66037](CVE-2025-66037): Possible buffer overrun while parsing SPKI
+  * [CVE-2025-66038](CVE-2025-66038): Possible read beyond buffer bounds when parsing historical bytes in PIV driver
+  * [CVE-2025-13763](CVE-2025-13763): Various uninitialized memory usage during card detection in libopensc
+  * [CVE-2025-66215](CVE-2025-66215): Possible write beyond buffer bounds in oberthur driver
+  * More low-severity data handling issues when parsing profile configuration
 * 05.09.2024 Heap buffer overflow issue has been identified in OpenSC driver for OpenPGP [CVE-2024-8443](CVE-2024-8443)
 * 04.09.2024 Uninitialized memory issues have been identified in OpenSC
   * [CVE-2024-45615](CVE-2024-45615): Usage of uninitialized values in libopensc and pkcs15init