Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 9: 2009-4883 Moderate: OpenSC pkcs11-tool Command Issue

fedora
Calendar Grey May 29, 2009
Dist Fedora Esm H88
Addresses a security flaw associated with the pkcs11-tool utility within the OpenSC framework for Fedora version 9.

A minor update fixing security problem within pkcs11-tool command

Summary

OpenSC is a package for for accessing smart card devices. Basic

functionality (e.g. SELECT FILE, READ BINARY) should work on any ISO

7816-4 compatible smart card. Encryption and decryption using private

keys on the smart card is possible with PKCS #15 compatible cards,

such as the FINEID (Finnish Electronic IDentity) card. Swedish Posten

eID cards have also been confirmed to work.

Update Information:

Topics%20covered

Topics Covered

security advisory Fedora security fix smart card opensc command issue

Change Log

* Mon May 11 2009 Tomas Mraz <tmraz@redhat.com> - 0.11.8-1 - new upstream version - fixes security issue * Fri Feb 27 2009 Tomas Mraz <tmraz@redhat.com> - 0.11.7-1 - new upstream version - fixes CVE-2009-0368 * Thu Feb 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.11.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Thu Jan 15 2009 Tomas Mraz <tmraz@redhat.com> - 0.11.6-2 - Add explicit requires for pcsc-lite-libs. Dlopen libpcsclite with the full soname. * Tue Sep 2 2008 Tomas Mraz <tmraz@redhat.com> - 0.11.6-1 - Update to latest upstream, fixes CVE-2008-2235 * Thu Apr 10 2008 Hans de Goede <j.w.r.degoede@hhs.nl> - 0.11.4-5 - BuildRequire libassuan-devel instead of libassuan-static (bz 441812)

References


[ 1 ] Bug #499862 - opensec: insecure public exponent in opensc 0.11.7 https://bugzilla.redhat.com/show_bug.cgi?id=499862

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update opensc' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: opensc
Product: Fedora 9
Version: 0.11.8
Release: 1.fc9
URL: Summary : Smart card library and applications

Topics%20covered

Topics Covered

security advisory Fedora security fix smart card opensc command issue

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here