Permalink
Browse files

debian/opensc.NEWS: Add a note about old data objects not being safe.

  • Loading branch information...
1 parent ec26f58 commit 63c55d821d965e98536896faa151a007548c39e8 @zedinosaur zedinosaur committed Feb 28, 2009
Showing with 15 additions and 2 deletions.
  1. +3 −2 debian/changelog
  2. +12 −0 debian/opensc.NEWS
View
@@ -1,4 +1,4 @@
-opensc (0.11.4-5lenny1) stable-security; urgency=critical
+opensc (0.11.4-5+lenny1) stable-security; urgency=critical
* src/pkcs15init/asepcos.profile, src/pkcs15init/cardos.profile,
src/pkcs15init/cyberflex.profile, src/pkcs15init/flex.profile,
@@ -11,8 +11,9 @@ opensc (0.11.4-5lenny1) stable-security; urgency=critical
lock_login and soft_keygen_allowed to prevent untrusted applications
from using the smartcard and preventing unexpected client side key
generation.
+ * debian/opensc.NEWS: Add a note about old data objects not being safe.
- --
+ -- Eric Dorland <eric@debian.org> Sat, 28 Feb 2009 18:33:41 -0500
opensc (0.11.4-5) unstable; urgency=high
View
@@ -1,3 +1,15 @@
+opensc (0.11.4-5lenny1) stable-security; urgency=critical
+
+ As documented in CVE-2009-0368, versions of OpenSC before this one
+ did not create private data objects (using the --private flag)
+ correctly. This version will create new private data objects
+ correctly, but will not correct existing private data objects
+ correctly. The safest way to work around this is to erase your card
+ and start from scratch, but see the advisory for further options.
+
+ -- Eric Dorland <eric@debian.org> Sat, 28 Feb 2009 18:33:41 -0500
+
+
opensc (0.10.1-1) unstable; urgency=high
As of version of 0.10.0, the libopensc-openssl and libpam-opensc are

0 comments on commit 63c55d8

Please sign in to comment.