-
pcsc-lite (1.5.3-1ubuntu4.2) lucid-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via long attribute value
- src/atrhandler.c: verify against maximum attribute size.
- http://lists.alioth.debian.org/pipermail/pcsclite-cvs-commit/2010-November/004923.html
- CVE-2010-4531
-- Marc Deslauriers <email address hidden> Thu, 14 Apr 2011 09:38:09 -0400
-
pcsc-lite (1.5.3-1ubuntu4.1) lucid-security; urgency=low
* SECURITY UPDATE: fix buffer overflows (LP: #603657)
- modified src/winscard_svc.c: Fix buffer overflows which allow local
users to to gain privileges via crafted message data, which is
improperly demarshalled. Patch provided by Debian in Lenny (DSA-2059-1)
and Brian Thomason.
- CVE-2010-0407
-- Kees Cook <email address hidden> Tue, 27 Jul 2010 16:19:03 -0700
-
pcsc-lite (1.5.3-1ubuntu4) lucid; urgency=low
* add build-dep on libusb-dev, fixes FTBFS
-- Reinhard Tartler <email address hidden> Sun, 07 Mar 2010 22:59:03 +0100
-
pcsc-lite (1.5.3-1ubuntu3) lucid; urgency=low
* disable hal support. LP: #506908
-- Reinhard Tartler <email address hidden> Sun, 07 Mar 2010 21:32:18 +0100
-
pcsc-lite (1.5.3-1ubuntu2) lucid; urgency=low
* rebuild rest of main for armel armv7/thumb2 optimization;
UbuntuSpec:mobile-lucid-arm-gcc-v7-thumb2
-- Alexander Sack <email address hidden> Sun, 07 Mar 2010 01:00:55 +0100
-
pcsc-lite (1.5.3-1ubuntu1) karmic; urgency=low
* Resynchronise with Debian (LP: #378309). Remaining changes:
- Move runtime libraries to /lib, for the benefit of wpasupplicant.
* Drop /var/run/pcscd creation in init script; the daemon seems to take
care of this itself and I can't reproduce the original problem that
prompted this Ubuntu-specific change (LP: #240195).
pcsc-lite (1.5.3-1) unstable; urgency=low
* New upstream release
pcsc-lite (1.5.2-2) unstable; urgency=low
* debian/rules: use symbolic links instead of copy to update config.sub and
config.guess as suggested in /usr/share/doc/autotools-dev/README.Debian.gz
Tries to limit difference with the Ubuntu package
* Standards-Version: 3.7.3 -> 3.8.1
- add support of noopt and parallel options in DEB_BUILD_OPTIONS
- resynch pcscd.init with /etc/init.d/skeleton
pcsc-lite (1.5.2-1) unstable; urgency=low
* New upstream release
* debian/pcscd.postinst: do not use an absolute path for update-reader.conf
lintian warning: command-with-path-in-maintainer-script
* debian/control: update Build-Depends: for debhelper
lintian warning: debhelper-script-needs-versioned-build-depends dh_lintian
(>= 6.0.7~)
-- Colin Watson <email address hidden> Tue, 02 Jun 2009 16:58:01 +0100
