Download
| Alert*
oval:org.secpod.oval:def:2100069
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Smartcard Libraries). The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Sol ... oval:org.secpod.oval:def:89044939 pcsc-lite was updated to fix one security issue. This security issue was fixed: - CVE-2016-10109: This use-after-free and double-free issue allowed local attacker to cause a Denial of Service and possible privilege escalation . oval:org.secpod.oval:def:111879 The purpose of PC/SC Lite is to provide a Windows SCard interface in a very small form factor for communicating to smartcards and readers. PC/SC Lite uses the same winscard API as used under Windows. This package includes the PC/SC Lite daemon, a resource manager that coordinates communications with ... oval:org.secpod.oval:def:111867 The purpose of PC/SC Lite is to provide a Windows SCard interface in a very small form factor for communicating to smartcards and readers. PC/SC Lite uses the same winscard API as used under Windows. This package includes the PC/SC Lite daemon, a resource manager that coordinates communications with ... oval:org.secpod.oval:def:602724 Peter Wu discovered that a use-after-free in the pscd PC/SC daemon of PCSC-Lite might result in denial of service or potentially privilege escalation. oval:org.secpod.oval:def:1800529 The SCardReleaseContext function normally releases resources associated with the given handle and clients should cease using this handle. A malicious client can however make the daemon invoke SCardReleaseContext and continue issuing other commands that use "cardsList", resulting in a use-after-free ... oval:org.secpod.oval:def:51705 pcsc-lite: Middleware to access a smart card using PC/SC PCSC-Lite could be made to crash or run programs as an administrator if it received specially crafted input. oval:org.secpod.oval:def:703435 pcsc-lite: Middleware to access a smart card using PC/SC PCSC-Lite could be made to crash or run programs as an administrator if it received specially crafted input. |