From 3cf8cc81deacb0a32e3254b210f5568877e1f744 Mon Sep 17 00:00:00 2001 From: Daniel Golle Date: Fri, 8 May 2026 18:42:46 +0100 Subject: [PATCH] opensc: update to 0.27.1 0.27.0 includes a number of CVE fixes and many improvements: Security fixes (0.27.0): * CVE-2025-13763: Uninitialized memory uses detected by fuzzers * CVE-2025-49010: Write beyond buffer bounds in GET RESPONSE APDU * CVE-2025-66215: Write beyond buffer bounds in oberthur driver * CVE-2025-66038: Read beyond buffer bounds in PIV historical bytes * CVE-2025-66037: Buffer overrun while parsing SPKI General improvements: * Added support for PKCS#11 3.2 in tools and pkcs11-spy/p11test * Added support for Ed448, X448 mechanisms; improved Edwards and Montgomery key support. * Support CKA_PUBKEY_KEY_INFO PKCS#11 attribute. * Remove obsolete tokend support. * Correctly detect OS-level FIPS mode in OpenSSL automatically. * Added support for Brainpool twisted curves. * EsteID: EstEID 2025, FinEID 4.0/4.1, Latvian IDEMIA Cosmo X & 8.2. * D-Trust Card 5.1 & 5.4 with PIN change/unblock. * Belpic: support for belpic applet version 1.8. * Many other card-specific improvements (OpenPGP, PIV, ...). 0.27.1 is a bug-fix release for infrastructure issues. Link: https://github.com/OpenSC/OpenSC/blob/0.27.1/NEWS Signed-off-by: Daniel Golle --- utils/opensc/Makefile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/utils/opensc/Makefile b/utils/opensc/Makefile index fff3571e04..46bfc64c80 100644 --- a/utils/opensc/Makefile +++ b/utils/opensc/Makefile @@ -8,9 +8,9 @@ include $(TOPDIR)/rules.mk PKG_NAME:=opensc -PKG_VERSION:=0.26.1 +PKG_VERSION:=0.27.1 PKG_RELEASE:=1 -PKG_HASH:=f16291a031d86e570394762e9f35eaf2fcbc2337a49910f3feae42d54e1688cb +PKG_HASH:=976f4a23eaf3397a1a2c3a7aac80bf971a8c3d829c9a79f06145bfaeeae5eca7 PKG_LICENSE:=LGPL-2.1-or-later PKG_LICENSE_FILES:=COPYING