Alpine: multiple opensc packages: security update to 0.24.0-r0

medium Tenable Cloud Security Plugin ID 408174

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling
symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to the
computer and a specially crafted USB device or smart card. This flaw allows the attacker to manipulate
APDU responses and potentially gain unauthorized access to sensitive data, compromising the system's
security. (CVE-2023-4535)

- A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated
by one process, it can perform cryptographic operations in other processes when an empty zero-length pin
is passed. This issue poses a security risk, particularly for OS logon/screen unlock and for small,
permanently connected tokens to computers. Additionally, the token can internally track login status. This
flaw allows an attacker to gain unauthorized access, carry out malicious actions, or compromise the system
without the user's awareness. (CVE-2023-40660)

- Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card
enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of
these flaws, an attacker must have physical access to the computer system and employ a custom-crafted USB
device or smart card to manipulate responses to APDUs. This manipulation can potentially allow compromise
key generation, certificate loading, and other card management operations during enrollment.
(CVE-2023-40661)

See Also

https://security.alpinelinux.org/vuln/CVE-2023-40660

https://security.alpinelinux.org/vuln/CVE-2023-40661

https://security.alpinelinux.org/vuln/CVE-2023-4535

Plugin Details

Severity: Medium

ID: 408174

Version: Revision 1.35

Type: Local

Published: 12/15/2023

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 4.9

Percentile: 57.12

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2023-40660

CVSS v3

Risk Factor: Medium

Base Score: 6.6

Temporal Score: 5.8

Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 10/30/2023

Reference Information

CVE: CVE-2023-40660, CVE-2023-40661, CVE-2023-4535