« DSA-1626 httrack - buffer overflow
DSA-1629 postfix - programming error »

DSA-1627 opensc - programming error

Chaskiel M Grundman discovered that opensc, a library and utilities to
handle smart cards, would initialise smart cards with the Siemens CardOS M4
card operating system without proper access rights. This allowed everyone
to change the card’s PIN.

Read the full story: DSA-1627 opensc - programming error: http://www.debian.org/security/2008/dsa-1627

Tags: , ,

This entry was posted on Tuesday, August 5th, 2008 at 4:44 am and is filed under Debian Security. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

Leave a Reply

You must be logged in to post a comment.