Double Free
CVE-2019-20792
Summary
OpenSC before 0.20.0 has a double free in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c lacks a uniqueness check.
- LOW
- LOCAL
- NONE
- PARTIAL
- PARTIAL
- PARTIAL
CWE-415 - Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
References
Advisory Timeline
- Published
