Opensc · Opensc · CVE-2019-16058
**Name of the Vulnerable Software and Affected Versions**
OpenSC pam p11 component versions 0.2.0 through 0.3.0
**Description**
An issue in the pam p11 component for OpenSC can cause a buffer overflow when a smart card creates a signature longer than 256 bytes. This may occur with RSA keys of 4096 bits, depending on the signature scheme used.
**Recommendations**
For versions 0.2.0 and 0.3.0, consider restricting the use of smart cards that create signatures longer than 256 bytes until a fix is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.