tag:github.com,2008:https://github.com/divinehawk/OpenSC/releasesTags from OpenSC2021-04-30T12:14:29Ztag:github.com,2008:Repository/363814288/0.22.0-rc12021-04-30T12:14:29Z0.22.0-rc1frankmorgnertag:github.com,2008:Repository/363814288/0.21.02020-11-24T12:00:26Z0.21.0frankmorgnertag:github.com,2008:Repository/363814288/0.21.0-rc22020-11-12T10:15:35Z0.21.0-rc2frankmorgnertag:github.com,2008:Repository/363814288/0.21.0-rc12020-10-02T23:19:38Z0.21.0-rc1frankmorgnertag:github.com,2008:Repository/363814288/0.20.02019-12-29T12:42:06Z0.20.0frankmorgnertag:github.com,2008:Repository/363814288/0.20.0-rc42019-12-05T15:48:11Z0.20.0-rc4tag:github.com,2008:Repository/363814288/0.20.0-rc32019-10-18T12:31:09Z0.20.0-rc3frankmorgnertag:github.com,2008:Repository/363814288/0.20.0-rc22019-10-03T11:57:09Z0.20.0-rc2: dir: Avoid insane allocations<p>dir: Avoid insane allocations</p>
<p>Resolves:
<br /><a href="https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17449">https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17449</a></p>Jakujetag:github.com,2008:Repository/363814288/0.20.0-rc12019-09-05T12:24:30Z0.20.0-rc1frankmorgnertag:github.com,2008:Repository/363814288/0.19.02018-09-13T11:49:16ZReleased 0.19.0<p>Released 0.19.0</p>
<p>* fixed multiple security problems (out of bound writes/reads, <a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/pull/1447">OpenSC#1447</a>):
<br /> * <a title="CVE-2018-16391" href="https://github.com/advisories/GHSA-37c8-gm6x-ffch">CVE-2018-16391</a>
<br /> * <a title="CVE-2018-16392" href="https://github.com/advisories/GHSA-j7gx-7q9r-7wp6">CVE-2018-16392</a>
<br /> * <a title="CVE-2018-16393" href="https://github.com/advisories/GHSA-5v2c-mrj8-6f2m">CVE-2018-16393</a>
<br /> * <a title="CVE-2018-16418" href="https://github.com/advisories/GHSA-4qgx-xw7p-6ggp">CVE-2018-16418</a>
<br /> * <a title="CVE-2018-16419" href="https://github.com/advisories/GHSA-955c-643p-2354">CVE-2018-16419</a>
<br /> * <a title="CVE-2018-16420" href="https://github.com/advisories/GHSA-w4mm-38jx-q774">CVE-2018-16420</a>
<br /> * <a title="CVE-2018-16421" href="https://github.com/advisories/GHSA-h7qm-v38r-6f4c">CVE-2018-16421</a>
<br /> * <a title="CVE-2018-16422" href="https://github.com/advisories/GHSA-f432-537h-hwj6">CVE-2018-16422</a>
<br /> * <a title="CVE-2018-16423" href="https://github.com/advisories/GHSA-x56f-5g95-vmfx">CVE-2018-16423</a>
<br /> * <a title="CVE-2018-16424" href="https://github.com/advisories/GHSA-29r7-6cj9-gh39">CVE-2018-16424</a>
<br /> * <a title="CVE-2018-16425" href="https://github.com/advisories/GHSA-634q-77fv-9cq7">CVE-2018-16425</a>
<br /> * <a title="CVE-2018-16426" href="https://github.com/advisories/GHSA-38x5-6rjp-vc28">CVE-2018-16426</a>
<br /> * <a title="CVE-2018-16427" href="https://github.com/advisories/GHSA-35jr-36cj-2w6g">CVE-2018-16427</a>
<br />* Improved documentation:
<br /> * New manual page for opensc.conf(5)
<br /> * Added several missing switches in manual pages and fixed formatting
<br />* Win32 installer:
<br /> * automatically start SCardSvr
<br /> * added newer OpenPGP ATRs
<br />* macOS installer: use HFS+ for backward compatibility
<br />* Remove outdated solaris files
<br />* PC/SC driver:
<br /> * Workaround OMNIKEY 3x21 and 6121 Smart Card Readers wrongly identified as pinpad readers in macOS
<br />* Workaround cards returning short signatures without leading zeroes
<br />* bash completion
<br /> * make location directory configurable
<br /> * Use a new correct path by default
<br />* build: support for libressl-2.7+
<br />* Configuration
<br /> * Distribute minimal opensc.conf
<br /> * `pkcs11_enable_InitToken made` global configuration option
<br /> * Modify behavior of `OPENSC_DRIVER` environment variable to restrict driver list instead of forcing one driver and skipping vital parts of configuration
<br /> * Removed configuration options `zero_ckaid_for_ca_certs`, `force_card_driver`, `reopen_debug_file`, `paranoid-memory`
<br /> * Generalized configuration option `ignored_readers`
<br />* If card initialization fails, continue card detection with other card drivers (<a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/pull/1251">OpenSC#1251</a>)
<br />* Fixed long term card operations on Windows 8 and later (<a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/issues/1043">OpenSC#1043</a>)
<br />* reader-pcsc: allow fixing the length of a PIN
<br />* fixed multithreading issue on Window with OpenPACE OIDs
<br />* fixed crash during `C_WaitForSlotEvent` (<a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/pull/1335">OpenSC#1335</a>)
<br />* Allow cancelling the PIN pad prompt before starting the reader transaction. Whether to start the transaction immediately or not is user-configurable for each application
<br />* `opensc-notify`
<br /> * add Exit button to tray icon
<br /> * User better description (GenericName) and a generic application icon
<br /> * Do not display in the application list
<br />* `pkcs15-tool`
<br /> * added support for reading ECDSA ssh keys
<br />* `p11test`
<br /> * Filter certificates other than `CKC_X_509`
<br />* `opengpg-tool`
<br /> * allow calling -d multiple times
<br /> * clarify usage text
<br />* Implement RSA PSS
<br />* Add support for SmartCard-HSM 4K (V3.0)
<br />* Remove support for CAC1 cards
<br />* Ignore unknown tags in properties buffer
<br />* Use GET PROPERTIES to recognize buffer formats
<br />* Unbreak encoding last tag-len-value in the data objects
<br />* Support HID Alt tokens without CCC
<br /> * They present certificates in OIDs of first AID and use other undocumented applets
<br /> * Inspect the tokens through the ACA applet and GET ACR APDU
<br />* Unbreak Get Challenge functionality
<br />* Make uninitialized cards working as expected with ESC
<br />* add serial number to card name
<br />* include detailed version into card name
<br />* define & set LCS (lifecycle support) as extended capability
<br />* extend manufacturer list in pkcs15-openpgp.c
<br />* correctly parse hist_bytes
<br />* Make deciphering with AUT-key possible for OpenPGP Card >v3.2 (<span class="issue-keyword tooltipped tooltipped-se">fixes</span> <a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/issues/1352">OpenSC#1352</a>)
<br />* Add supported algorithms for OpenPGP Card (<span class="issue-keyword tooltipped tooltipped-se">Fixes</span> <a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/issues/1432">OpenSC#1432</a>)
<br />* added support for 2nd generation eGK (<a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/issues/1451">OpenSC#1451</a>)
<br />* create PIN in MF (`pkcs15init`)
<br />* fixed identifying unknown card as German ID card (<a class="issue-link js-issue-link" href="https://github.com/OpenSC/OpenSC/issues/1360">OpenSC#1360</a>)
<br />* Context Specific Login Using Pin Pad Reader Fix
<br />* Better Handling of Reset using Discovery Object</p>frankmorgner