What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2009-2267
2009-03-03 17:57:14
--------------------------------------------------------------------------------Name        : opensc
Product     : Fedora 9
Version     : 0.11.7
Release     : 1.fc9
URL         : Summary     : Smart card library and applications
Description :
OpenSC is a package for for accessing smart card devices.  Basic
functionality (e.g. SELECT FILE, READ BINARY) should work on any ISO
7816-4 compatible smart card.  Encryption and decryption using private
keys on the smart card is possible with PKCS #15 compatible cards,
such as the FINEID (Finnish Electronic IDentity) card.  Swedish Posten
eID cards have also been confirmed to work.

--------------------------------------------------------------------------------Update Information:

Security update fixing CVE-2008-3972, CVE-2008-2235, and CVE-2009-0368.
--------------------------------------------------------------------------------ChangeLog:

* Fri Feb 27 2009 Tomas Mraz  - 0.11.7-1
- new upstream version - fixes CVE-2009-0368
* Thu Feb 26 2009 Fedora Release Engineering  - 0.11.6-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Thu Jan 15 2009 Tomas Mraz  - 0.11.6-2
- Add explicit requires for pcsc-lite-libs. Dlopen libpcsclite with the full
  soname.
* Tue Sep  2 2008 Tomas Mraz  - 0.11.6-1
- Update to latest upstream, fixes CVE-2008-2235
* Thu Apr 10 2008 Hans de Goede  - 0.11.4-5
- BuildRequire libassuan-devel instead of libassuan-static (bz 441812)
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #487694 - CVE-2009-0368 opensc: insufficient access restrictions on private data
        https://bugzilla.redhat.com/show_bug.cgi?id=487694
  [ 2 ] Bug #457367 - CVE-2008-2235, CVE-2008-3972 opensc: incorrect initialization of Siemens CardOS M4 smart cards
        https://bugzilla.redhat.com/show_bug.cgi?id=457367
--------------------------------------------------------------------------------This update can be installed with the "yum" update program.  Use 
su -c 'yum update opensc' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 9 Update: opensc-0.11.7-1.fc9

March 18, 2009
Security update fixing CVE-2008-3972, CVE-2008-2235, and CVE-2009-0368.

Summary

OpenSC is a package for for accessing smart card devices. Basic

functionality (e.g. SELECT FILE, READ BINARY) should work on any ISO

7816-4 compatible smart card. Encryption and decryption using private

keys on the smart card is possible with PKCS #15 compatible cards,

such as the FINEID (Finnish Electronic IDentity) card. Swedish Posten

eID cards have also been confirmed to work.

Security update fixing CVE-2008-3972, CVE-2008-2235, and CVE-2009-0368.

* Fri Feb 27 2009 Tomas Mraz - 0.11.7-1

- new upstream version - fixes CVE-2009-0368

* Thu Feb 26 2009 Fedora Release Engineering - 0.11.6-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild

* Thu Jan 15 2009 Tomas Mraz - 0.11.6-2

- Add explicit requires for pcsc-lite-libs. Dlopen libpcsclite with the full

soname.

* Tue Sep 2 2008 Tomas Mraz - 0.11.6-1

- Update to latest upstream, fixes CVE-2008-2235

* Thu Apr 10 2008 Hans de Goede - 0.11.4-5

- BuildRequire libassuan-devel instead of libassuan-static (bz 441812)

[ 1 ] Bug #487694 - CVE-2009-0368 opensc: insufficient access restrictions on private data

https://bugzilla.redhat.com/show_bug.cgi?id=487694

[ 2 ] Bug #457367 - CVE-2008-2235, CVE-2008-3972 opensc: incorrect initialization of Siemens CardOS M4 smart cards

https://bugzilla.redhat.com/show_bug.cgi?id=457367

su -c 'yum update opensc' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

http://fedoraproject.org/keys

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-package-announce

FEDORA-2009-2267 2009-03-03 17:57:14 Product : Fedora 9 Version : 0.11.7 Release : 1.fc9 URL : Summary : Smart card library and applications Description : OpenSC is a package for for accessing smart card devices. Basic functionality (e.g. SELECT FILE, READ BINARY) should work on any ISO 7816-4 compatible smart card. Encryption and decryption using private keys on the smart card is possible with PKCS #15 compatible cards, such as the FINEID (Finnish Electronic IDentity) card. Swedish Posten eID cards have also been confirmed to work. Security update fixing CVE-2008-3972, CVE-2008-2235, and CVE-2009-0368. * Fri Feb 27 2009 Tomas Mraz - 0.11.7-1 - new upstream version - fixes CVE-2009-0368 * Thu Feb 26 2009 Fedora Release Engineering - 0.11.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Thu Jan 15 2009 Tomas Mraz - 0.11.6-2 - Add explicit requires for pcsc-lite-libs. Dlopen libpcsclite with the full soname. * Tue Sep 2 2008 Tomas Mraz - 0.11.6-1 - Update to latest upstream, fixes CVE-2008-2235 * Thu Apr 10 2008 Hans de Goede - 0.11.4-5 - BuildRequire libassuan-devel instead of libassuan-static (bz 441812) [ 1 ] Bug #487694 - CVE-2009-0368 opensc: insufficient access restrictions on private data https://bugzilla.redhat.com/show_bug.cgi?id=487694 [ 2 ] Bug #457367 - CVE-2008-2235, CVE-2008-3972 opensc: incorrect initialization of Siemens CardOS M4 smart cards https://bugzilla.redhat.com/show_bug.cgi?id=457367 su -c 'yum update opensc' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce

Change Log

References

Update Instructions

Severity
Product : Fedora 9
Version : 0.11.7
Release : 1.fc9
URL : Summary : Smart card library and applications

Related News

Krasue RAT Malware Hides on Linux Servers Using Embedded Rootkits

Dec 7, 2023

Kali vs. ParrotOS: 2 Versatile Linux Distros for Security Pros

Dec 9, 2023

Kali Linux 2023.4 Released With New Hacking Tools

Dec 6, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Password Guessing as an Attack Vector
Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management

About Us

Powered By

Footer Logo