CVE-2021-42779

Publication date 18 April 2022

Last updated 25 August 2025

Ubuntu priority

Medium

Why this priority?

Cvss 3 Severity Score

5.3 · Medium

Score breakdown

Description

A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid.

Status

Package Ubuntu Release Status
opensc 24.10 oracular
Not affected
24.04 LTS noble
Not affected
23.10 mantic Ignored end of life, was needs-triage
23.04 lunar Ignored end of life, was needs-triage
22.10 kinetic Ignored end of life, was needs-triage
22.04 LTS jammy
Not affected
21.10 impish Ignored end of life
21.04 hirsute Ignored end of life
20.04 LTS focal Ignored end of standard support, was ignored [changes too intrusive]
18.04 LTS bionic Ignored end of standard support, was needs-triage
16.04 LTS xenial Ignored end of standard support
14.04 LTS trusty Ignored end of standard support

Severity score breakdown

CVSS version: CVSS v3.0

Base score 5.3 · Medium

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Other references

Access our resources on patching vulnerabilities