[ubuntu/jaunty-security] opensc (delayed), opensc 0.11.4-5ubuntu1.1 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Tue Jul 13 14:03:32 BST 2010
opensc (0.11.4-5ubuntu1.1) jaunty-security; urgency=low
* SECURITY UPDATE: Fix insecure profile handling (LP: #603703)
- modified src/pkcs15init/asepcos.profile, src/pkcs15init/cardos.profile,
src/pkcs15init/cyberflex.profile, src/pkcs15init/flex.profile,
src/pkcs15init/gpk.profile, src/pkcs15init/incrypto34.profile,
src/pkcs15init/jcop.profile, src/pkcs15init/muscle.profile,
src/pkcs15init/pkcs15-lib.c, src/pkcs15init/starcos.profile: Backport fix
from upstream svn#3605. Fixes improper handling of private data in profiles
- modified etc/opensc.conf.in, src/pkcs11/misc.c: Change the defaults of
lock_login and soft_keygen_allowed to prevent untrusted applications
from using the smartcard and preventing unexpected client side key
generation.
Patches provided by Debian in Lenny (DSA-1734-1)
- CVE-2009-0368
Date: Fri, 09 Jul 2010 13:55:29 -0400
Changed-By: Brian Thomason <brian.thomason at canonical.com>
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/opensc/0.11.4-5ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Fri, 09 Jul 2010 13:55:29 -0400
Source: opensc
Binary: opensc libopensc2-dev libopensc2 libopensc2-dbg mozilla-opensc
Architecture: source
Version: 0.11.4-5ubuntu1.1
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: Brian Thomason <brian.thomason at canonical.com>
Description:
libopensc2 - SmartCard library with support for PKCS#15 compatible smart cards
libopensc2-dbg - debugging symbols for libopensc2
libopensc2-dev - OpenSC development files
mozilla-opensc - Mozilla plugin for authentication using OpenSC
opensc - SmartCard utilities with support for PKCS#15 compatible cards
Launchpad-Bugs-Fixed: 603703
Changes:
opensc (0.11.4-5ubuntu1.1) jaunty-security; urgency=low
.
* SECURITY UPDATE: Fix insecure profile handling (LP: #603703)
- modified src/pkcs15init/asepcos.profile, src/pkcs15init/cardos.profile,
src/pkcs15init/cyberflex.profile, src/pkcs15init/flex.profile,
src/pkcs15init/gpk.profile, src/pkcs15init/incrypto34.profile,
src/pkcs15init/jcop.profile, src/pkcs15init/muscle.profile,
src/pkcs15init/pkcs15-lib.c, src/pkcs15init/starcos.profile: Backport fix
from upstream svn#3605. Fixes improper handling of private data in profiles
- modified etc/opensc.conf.in, src/pkcs11/misc.c: Change the defaults of
lock_login and soft_keygen_allowed to prevent untrusted applications
from using the smartcard and preventing unexpected client side key
generation.
Patches provided by Debian in Lenny (DSA-1734-1)
- CVE-2009-0368
Checksums-Sha1:
f0acb432906a7e9ce66be715a3c8d61c5e348376 1425 opensc_0.11.4-5ubuntu1.1.dsc
62c2d7f0bee3b7788fac06c39b1099b5e21d2668 60491 opensc_0.11.4-5ubuntu1.1.diff.gz
Checksums-Sha256:
2ecfe27feb730967c92c70b4b5fe937a982df42bb8461f2738d402dea1fa24d1 1425 opensc_0.11.4-5ubuntu1.1.dsc
5b30bde14d3383bb4fa7a413bbe7e1a24135ba6fd072f2d0ffe5c7010a47dc16 60491 opensc_0.11.4-5ubuntu1.1.diff.gz
Files:
49b6d086f7e1be6e93715914bfe7f61f 1425 utils extra opensc_0.11.4-5ubuntu1.1.dsc
5091c61166e6a1582c766e707018d51f 60491 utils extra opensc_0.11.4-5ubuntu1.1.diff.gz
Original-Maintainer: Eric Dorland <eric at debian.org>
More information about the Jaunty-changes
mailing list