MDVSA-2009:089 -- Mandriva openscID: oval:org.secpod.oval:def:300524 | Date: (C)2012-01-07 (M)2021-09-30 |
Class: PATCH | Family: unix |
OpenSC before 0.11.7 allows physically proximate attackers to bypass intended PIN requirements and read private data objects via a low level APDU command or debugging tool, as demonstrated by reading the 4601 or 4701 file with the opensc-explorer or opensc-tool program. The updated packages fix the issue.
Platform: |
Mandriva Linux 2009.0 |
Mandriva Linux 2008.1 |
Mandriva Linux 2008.0 |