Описание
ELSA-2013-0525: pcsc-lite security and bug fix update (MODERATE)
[1.5.2-11]
- fix overflow issue introduced in 1.5.2-5 and incorrectly corrected in 1.5.2-6
[1.5.2-10]
- CVE-2010-4531
[1.5.2-9]
- Bump version number so it doesn't get confused with z stream build.
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
pcsc-lite
1.5.2-11.el6
pcsc-lite-devel
1.5.2-11.el6
pcsc-lite-doc
1.5.2-11.el6
pcsc-lite-libs
1.5.2-11.el6
Oracle Linux i686
pcsc-lite
1.5.2-11.el6
pcsc-lite-devel
1.5.2-11.el6
pcsc-lite-doc
1.5.2-11.el6
pcsc-lite-libs
1.5.2-11.el6
Связанные CVE
Связанные уязвимости
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset (ATR) Handler (atrhandler.c) for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service (crash) and possibly execute arbitrary code via a smart card with an ATR message containing a long attribute value.
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset (ATR) Handler (atrhandler.c) for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service (crash) and possibly execute arbitrary code via a smart card with an ATR message containing a long attribute value.
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset (ATR) Handler (atrhandler.c) for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service (crash) and possibly execute arbitrary code via a smart card with an ATR message containing a long attribute value.
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer ...
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset (ATR) Handler (atrhandler.c) for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service (crash) and possibly execute arbitrary code via a smart card with an ATR message containing a long attribute value.