Summary: | =dev-libs/opensc-0.11.7 generates invalid RSA keys (CVE-2009-1603) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Alex Legler (RETIRED) <a3li> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | crypto+disabled |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2009/05/08/1 | ||
Whiteboard: | B4 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Alex Legler (RETIRED)
2009-05-15 09:12:27 UTC
0.11.8 has been released to fix this problem. dev-libs/opensc-0.11.8 is now in the tree. Please stabilize dev-libs/opensc-0.11.8. Stable on alpha. 16 May 2009; Tobias Klausmann <klausman@gentoo.org> ChangeLog: Stable on alpha, bug #269920 (In reply to comment #5) > 16 May 2009; Tobias Klausmann <klausman@gentoo.org> ChangeLog: > Stable on alpha, bug #269920 Fixed. Thanks for the heads up. Stable for HPPA. x86 stable ppc64 done ppc done arm/ia64/m68k/s390/sh/sparc stable amd64 stable, all arches done. Ready to vote, I vote YES. YES too, request filed. Reverted rbu's last change, only 0.11.7 is affected. GLSA 200908-01, thanks everyone. |