1 ignored security issue in jessie

package:
pam-p11
severity:
low
created:
2019-09-07
last updated:
2019-11-02

There is 1 open security issue in jessie.
1 issue skipped by the security teams:
  • CVE-2019-16058: An issue was discovered in the pam_p11 component 0.2.0 and 0.3.0 for OpenSC. If a smart card creates a signature with a length longer than 256 bytes, this triggers a buffer overflow. This may be the case for RSA keys with 4096 bits depending on the signature scheme.
Please fix it.