CVE-2010-4523
Published: 7 January 2011
Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to (1) card-acos5.c, (2) card-atrust-acos.c, and (3) card-starcos.c.
Priority
Status
Package | Release | Status |
---|---|---|
opensc Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
hardy |
Released
(0.11.4-2ubuntu2.1 )
|
|
karmic |
Released
(.11.8-1ubuntu2.1)
|
|
lucid |
Released
(0.11.12-1ubuntu3.2)
|
|
maverick |
Released
(0.11.13-1ubuntu2.1)
|
|
upstream |
Released
(0.11.13-1.1)
|
|
Patches: debdiff: https://bugs.launchpad.net/ubuntu/+source/opensc/+bug/692483 |