[SECURITY] [DLA 778-1] pcsc-lite security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 778-1] pcsc-lite security update
From: Chris Lamb <lamby@debian.org>
Date: Fri, 06 Jan 2017 15:40:14 +0000
Message-id: <[🔎] 1483717214.2764460.839441873.6C450A22@webmail.messagingengine.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : pcsc-lite
Version        : 1.8.4-1+deb7u2
CVE ID         : CVE-2016-10109

It was discovered that there was a use-after-free and double-free vulnerability
in pcsc-lite, a library to access smart cards that use the Windows(R) SCard
interface ("PC/SC").

For Debian 7 "Wheezy", this issue has been fixed in pcsc-lite version
1.8.4-1+deb7u2.

We recommend that you upgrade your pcsc-lite packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=DPlU
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 773-3] python-crypto regression update
Next by Date: [SECURITY] [DLA 773-4] python-crypto update
Previous by thread: [SECURITY] [DLA 773-3] python-crypto regression update
Next by thread: [SECURITY] [DLA 773-4] python-crypto update
Index(es):
- Date
- Thread