PC/SC Lite provides a Windows SCard compatible interface for communicating
with smart cards, smart card readers, and other security tokens.
Multiple buffer overflow flaws were discovered in the way the pcscd daemon,
a resource manager that coordinates communications with smart card readers
and smart cards connected to the system, handled client requests. A local
user could create a specially-crafted request that would cause the pcscd
daemon to crash or, possibly, execute arbitrary code. (CVE-2010-0407,
CVE-2009-4901)
Users of pcsc-lite should upgrade to these updated packages, which contain
a backported patch to correct these issues. After installing this update,
the pcscd daemon will be restarted automatically.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | ppc | pcsc-lite-libs | < 1.4.4-4.el5_5 | pcsc-lite-libs-1.4.4-4.el5_5.ppc.rpm |
RedHat | 5 | i386 | pcsc-lite-devel | < 1.4.4-4.el5_5 | pcsc-lite-devel-1.4.4-4.el5_5.i386.rpm |
RedHat | 5 | ia64 | pcsc-lite-doc | < 1.4.4-4.el5_5 | pcsc-lite-doc-1.4.4-4.el5_5.ia64.rpm |
RedHat | 5 | x86_64 | pcsc-lite-libs | < 1.4.4-4.el5_5 | pcsc-lite-libs-1.4.4-4.el5_5.x86_64.rpm |
RedHat | 5 | ppc | pcsc-lite | < 1.4.4-4.el5_5 | pcsc-lite-1.4.4-4.el5_5.ppc.rpm |
RedHat | 5 | i386 | pcsc-lite-libs | < 1.4.4-4.el5_5 | pcsc-lite-libs-1.4.4-4.el5_5.i386.rpm |
RedHat | 5 | x86_64 | pcsc-lite | < 1.4.4-4.el5_5 | pcsc-lite-1.4.4-4.el5_5.x86_64.rpm |
RedHat | 5 | ia64 | pcsc-lite-libs | < 1.4.4-4.el5_5 | pcsc-lite-libs-1.4.4-4.el5_5.ia64.rpm |
RedHat | 5 | src | pcsc-lite | < 1.4.4-4.el5_5 | pcsc-lite-1.4.4-4.el5_5.src.rpm |
RedHat | 5 | i386 | pcsc-lite | < 1.4.4-4.el5_5 | pcsc-lite-1.4.4-4.el5_5.i386.rpm |