Paketname
opensc
Datum
2009-05-27
Advisory ID
MDVSA-2009:123
Betroffene Versionen
2009.1 i586 , 2009.1 x86_64

Problembeschreibung

src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used
with unspecified third-party PKCS#11 modules, generates RSA keys
with incorrect public exponents, which allows attackers to read
the cleartext form of messages that were intended to be encrypted
(CVE-2009-1603).

The updated packages fix the issue.

Aktualisierte Pakete

2009.1 i586

 93d931f0429e33b4cfa8afc4e318e62b  2009.1/i586/libopensc2-0.11.7-1.2mdv2009.1.i586.rpm
 6d8c099c4de3b3af319ece59d077779f  2009.1/i586/libopensc-devel-0.11.7-1.2mdv2009.1.i586.rpm
 c90bfd05585e2fb085ae163845fb73da  2009.1/i586/mozilla-plugin-opensc-0.11.7-1.2mdv2009.1.i586.rpm
 db9f05b26f7518415312b632d4be98ed  2009.1/i586/opensc-0.11.7-1.2mdv2009.1.i586.rpm 
 27a21b5fcf9e2249480132a536595e56  2009.1/SRPMS/opensc-0.11.7-1.2mdv2009.1.src.rpm

2009.1 x86_64

 03fe16d970157ab33ab4b794d43b8b93  2009.1/x86_64/lib64opensc2-0.11.7-1.2mdv2009.1.x86_64.rpm
 29ed791ed3bf95d241868f6b785f08d2  2009.1/x86_64/lib64opensc-devel-0.11.7-1.2mdv2009.1.x86_64.rpm
 676798a2d6346adb036bc467f8ac0d8b  2009.1/x86_64/mozilla-plugin-opensc-0.11.7-1.2mdv2009.1.x86_64.rpm
 6fc6703c378a8f08b96f9df540d413fe  2009.1/x86_64/opensc-0.11.7-1.2mdv2009.1.x86_64.rpm 
 27a21b5fcf9e2249480132a536595e56  2009.1/SRPMS/opensc-0.11.7-1.2mdv2009.1.src.rpm

Referenzen