CVE-2019-6502 (NVD)

2019-01-22

sc_context_create in ctx.c in libopensc in OpenSC 0.19.0 has a memory leak, as demonstrated by a call from eidenv.

Products Opensc
Type Improper Release of Memory Before Removing Last Reference (CWE-401)
First patch - None (likely due to unavailable code)
Links https://github.com/OpenSC/OpenSC/issues/1586
http://www.openwall.com/lists/oss-security/2019/12/29/1
https://lists.debian.org/debian-lts-announce/2023/06/msg00025.html