Fedora 25: Critical Use-After-Free Advisory for pcsc-lite Security
fedora
January 6, 2017
New upstream release
Summary
The purpose of PC/SC Lite is to provide a Windows(R) SCard interface
in a very small form factor for communicating to smartcards and
readers. PC/SC Lite uses the same winscard API as used under
Windows(R). This package includes the PC/SC Lite daemon, a resource
manager that coordinates communications with smart card readers and
smart cards that are connected to the system, as well as other command
line tools.
Update Information:
New upstream release
Topics Covered
Change Log
References
[ 1 ] Bug #1410074 - CVE-2016-10109 pcsc-lite: Use-after-free of cardsList due to SCardReleaseContext invocations
https://bugzilla.redhat.com/show_bug.cgi?id=1410074
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade pcsc-lite' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: pcsc-lite
Product: Fedora 25
Version: 1.8.20
Release: 1.fc25
URL: Summary : PC/SC Lite smart card framework and applications
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!