CVE-2020-26570 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2020-26570 Interim 1 55 2026-03-05T05:40:59Z current 2021-05-30T14:44:32Z 2026-03-05T05:40:59Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2020-26570 The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2021-March/008574.html E-Mail link for SUSE-SU-2021:0998-1 https://lists.suse.com/pipermail/sle-security-updates/2021-April/008621.html E-Mail link for SUSE-SU-2021:1168-1 https://lists.suse.com/pipermail/sle-security-updates/2022-March/010580.html E-Mail link for SUSE-SU-2022:1041-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JELZKRVEJGYE74DM3GTNHNTVZBQHK5DJ/ E-Mail link for openSUSE-SU-2021:0565-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Liberty Linux 8 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Point of Service 11 SP3 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Server 11 SP4 LTSS SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Micro 6.0 SUSE Linux Micro 6.1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 openSUSE Leap 15.2 openSUSE Tumbleweed libopensc2 libopensc2-32bit libopensc2-x86 opensc opensc-0.13.0-3.11.1 opensc-0.18.0-150000.3.23.1 opensc-0.19.0-3.7.1 opensc-0.19.0-lp152.3.3.1 opensc-0.20.0-4.el8 opensc-0.21.0-2.2 opensc-0.22.0-150400.1.7 opensc-0.22.0-150400.3.3.1 opensc-0.22.0-150600.11.3.1 opensc-0.22.0-150600.9.3 opensc-0.24.0-2.1 opensc-0.24.0-slfo.1.1_1.2 opensc-0.26.1-160000.2.2 opensc-32bit opensc-32bit-0.19.0-lp152.3.3.1 opensc-32bit-0.21.0-2.2 opensc-x86 opensc-0.20.0-4.el8 as a component of SUSE Liberty Linux 8 opensc-0.18.0-150000.3.23.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS opensc-0.18.0-150000.3.23.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS opensc-0.19.0-3.7.1 as a component of SUSE Linux Enterprise Micro 5.1 opensc-0.19.0-3.7.1 as a component of SUSE Linux Enterprise Micro 5.2 opensc-0.22.0-150400.1.7 as a component of SUSE Linux Enterprise Micro 5.3 opensc-0.22.0-150400.1.7 as a component of SUSE Linux Enterprise Micro 5.4 opensc-0.22.0-150400.3.3.1 as a component of SUSE Linux Enterprise Micro 5.5 opensc-0.19.0-3.7.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP2 opensc-0.19.0-3.7.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP3 opensc-0.22.0-150400.1.7 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP4 opensc-0.22.0-150400.1.7 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP5 opensc-0.22.0-150600.9.3 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 opensc-0.22.0-150600.11.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 opensc-0.13.0-3.11.1 as a component of SUSE Linux Enterprise Server 12 SP3-TERADATA opensc-0.13.0-3.11.1 as a component of SUSE Linux Enterprise Server 12 SP5 opensc-0.18.0-150000.3.23.1 as a component of SUSE Linux Enterprise Server 15-LTSS opensc-0.26.1-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 opensc-0.13.0-3.11.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 opensc-0.18.0-150000.3.23.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 opensc-0.24.0-2.1 as a component of SUSE Linux Micro 6.0 opensc-0.24.0-slfo.1.1_1.2 as a component of SUSE Linux Micro 6.1 opensc-0.19.0-lp152.3.3.1 as a component of openSUSE Leap 15.2 opensc-32bit-0.19.0-lp152.3.3.1 as a component of openSUSE Leap 15.2 opensc-0.21.0-2.2 as a component of openSUSE Tumbleweed opensc-32bit-0.21.0-2.2 as a component of openSUSE Tumbleweed opensc as a component of SUSE Linux Enterprise Module for Basesystem 15 SP4 opensc as a component of SUSE Linux Enterprise Point of Service 11 SP3 opensc as a component of SUSE Linux Enterprise Server 11 SP1 opensc as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata libopensc2 as a component of SUSE Linux Enterprise Server 11 SP3 libopensc2-32bit as a component of SUSE Linux Enterprise Server 11 SP3 libopensc2-x86 as a component of SUSE Linux Enterprise Server 11 SP3 opensc as a component of SUSE Linux Enterprise Server 11 SP3 opensc-32bit as a component of SUSE Linux Enterprise Server 11 SP3 opensc-x86 as a component of SUSE Linux Enterprise Server 11 SP3 opensc as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata opensc as a component of SUSE Linux Enterprise Server 11 SP4 LTSS libopensc2 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libopensc2-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS opensc as a component of SUSE Linux Enterprise Server 11 SP4-LTSS opensc-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file. CVE-2020-26570 SUSE Liberty Linux 8:opensc-0.20.0-4.el8 SUSE Linux Enterprise High Performance Computing 15-ESPOS:opensc-0.18.0-150000.3.23.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:opensc-0.18.0-150000.3.23.1 SUSE Linux Enterprise Micro 5.1:opensc-0.19.0-3.7.1 SUSE Linux Enterprise Micro 5.2:opensc-0.19.0-3.7.1 SUSE Linux Enterprise Micro 5.3:opensc-0.22.0-150400.1.7 SUSE Linux Enterprise Micro 5.4:opensc-0.22.0-150400.1.7 SUSE Linux Enterprise Micro 5.5:opensc-0.22.0-150400.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP2:opensc-0.19.0-3.7.1 SUSE Linux Enterprise Module for Basesystem 15 SP3:opensc-0.19.0-3.7.1 SUSE Linux Enterprise Module for Basesystem 15 SP4:opensc-0.22.0-150400.1.7 SUSE Linux Enterprise Module for Basesystem 15 SP5:opensc-0.22.0-150400.1.7 SUSE Linux Enterprise Module for Basesystem 15 SP6:opensc-0.22.0-150600.9.3 SUSE Linux Enterprise Module for Basesystem 15 SP7:opensc-0.22.0-150600.11.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3:opensc-32bit-0.19.0-3.7.1 SUSE Linux Enterprise Server 12 SP3-TERADATA:opensc-0.13.0-3.11.1 SUSE Linux Enterprise Server 12 SP5:opensc-0.13.0-3.11.1 SUSE Linux Enterprise Server 15-LTSS:opensc-0.18.0-150000.3.23.1 SUSE Linux Enterprise Server 16.0:opensc-0.26.1-160000.2.2 SUSE Linux Enterprise Server for SAP Applications 12 SP5:opensc-0.13.0-3.11.1 SUSE Linux Enterprise Server for SAP Applications 15:opensc-0.18.0-150000.3.23.1 SUSE Linux Micro 6.0:opensc-0.24.0-2.1 SUSE Linux Micro 6.1:opensc-0.24.0-slfo.1.1_1.2 openSUSE Leap 15.2:opensc-0.19.0-lp152.3.3.1 openSUSE Leap 15.2:opensc-32bit-0.19.0-lp152.3.3.1 openSUSE Tumbleweed:opensc-0.21.0-2.2 openSUSE Tumbleweed:opensc-32bit-0.21.0-2.2 SUSE Linux Enterprise Module for Basesystem 15 SP4:opensc SUSE Linux Enterprise Point of Service 11 SP3:opensc SUSE Linux Enterprise Server 11 SP1 for Teradata:opensc SUSE Linux Enterprise Server 11 SP1:opensc SUSE Linux Enterprise Server 11 SP3 for Teradata:opensc SUSE Linux Enterprise Server 11 SP3:libopensc2 SUSE Linux Enterprise Server 11 SP3:libopensc2-32bit SUSE Linux Enterprise Server 11 SP3:libopensc2-x86 SUSE Linux Enterprise Server 11 SP3:opensc SUSE Linux Enterprise Server 11 SP3:opensc-32bit SUSE Linux Enterprise Server 11 SP3:opensc-x86 SUSE Linux Enterprise Server 11 SP4 LTSS:opensc SUSE Linux Enterprise Server 11 SP4-LTSS:libopensc2 SUSE Linux Enterprise Server 11 SP4-LTSS:libopensc2-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:opensc SUSE Linux Enterprise Server 11 SP4-LTSS:opensc-32bit moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H