CVE-2021-42779

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Opensc versions prior to 0.22.0

Description A heap use after free issue was found in the sc file valid function. This issue can potentially be exploited, but no specific details about the estimated number of affected devices or real-world incidents are provided.

Recommendations For versions prior to 0.22.0, update to version 0.22.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of the sc file valid function until a patch is available.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2021-2480

ALT-PU-2023-1834

ALT-PU-2023-1905

ALT-PU-2023-5128

AZL-9482

BDU:2025-12492

CVE-2021-42779

DLA-3463-1

DLA-4004-1

MGASA-2021-0512

OPENSUSE-SU-2022_1156-1

OPENSUSE-SU-2024:11613-1

SUSE-SU-2021:3582-1

SUSE-SU-2021_3582-1

SUSE-SU-2022:1041-1

SUSE-SU-2022:1156-1

SUSE-SU-2022_1156-1

Affected Products

Alt Linux

Astra Linux

Opensc

Suse

CVE-2021-42779

Weakness Enumeration

Related Identifiers

Affected Products

References · 64