forked from OpenSC/OpenSC
-
Notifications
You must be signed in to change notification settings - Fork 3
OpenSC security advisories
Viktor Tarasov edited this page Dec 11, 2012
·
1 revision
Software often contains bugs, so does OpenSC. Be aware of the following security issues (in addition to overall SecurityConsiderations) and upgrade to latest released version if needed.
- 17-Dec-2010 A rogue smart card, specially crafted for this purpose, can be used to potentially execute arbitrary code if inserted to a local machine. Source: MWR InfoSecurity Advisory, fix: 4913. Coded as CVE-2010-4523
- 07-May-2009 security advisory coded as CVE-2009-1603
- 26-Feb-2009 security advisory coded as CVE-2009-0368
- 27-Aug-2008 security advisory coded as CVE-2008-3972
- 31-Jul-2008 security advisory coded as CVE-2008-2235