* SECURITY UPDATE: fix buffer overflows (LP: #603657)
- modified src/winscard_svc.c: Fix buffer overflows which allow local
users to to gain privileges via crafted message data, which is
improperly demarshalled. Patch provided by Debian in Lenny (DSA-2059-1)
and Brian Thomason.
- CVE-2010-0407
-- Kees Cook <email address hidden> Tue, 27 Jul 2010 16:19:03 -0700
This bug was fixed in the package pcsc-lite - 1.5.3-1ubuntu4.1
---------------
pcsc-lite (1.5.3-1ubuntu4.1) lucid-security; urgency=low
* SECURITY UPDATE: fix buffer overflows (LP: #603657)
- modified src/winscard_svc.c: Fix buffer overflows which allow local
users to to gain privileges via crafted message data, which is
improperly demarshalled. Patch provided by Debian in Lenny (DSA-2059-1)
and Brian Thomason.
- CVE-2010-0407
-- Kees Cook <email address hidden> Tue, 27 Jul 2010 16:19:03 -0700