Peter Wu discovered that the PC/SC service did not correctly handle certain resources. A local attacker could use this issue to cause PC/SC to crash, resulting in a denial of service, or possibly execute arbitrary code with root privileges.
{ "binaries": [ { "binary_name": "libpcsclite-dev", "binary_version": "1.8.10-1ubuntu1.1" }, { "binary_name": "libpcsclite-dev-dbgsym", "binary_version": "1.8.10-1ubuntu1.1" }, { "binary_name": "libpcsclite1", "binary_version": "1.8.10-1ubuntu1.1" }, { "binary_name": "libpcsclite1-dbg", "binary_version": "1.8.10-1ubuntu1.1" }, { "binary_name": "libpcsclite1-dbgsym", "binary_version": "1.8.10-1ubuntu1.1" }, { "binary_name": "pcscd", "binary_version": "1.8.10-1ubuntu1.1" }, { "binary_name": "pcscd-dbgsym", "binary_version": "1.8.10-1ubuntu1.1" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "libpcsclite-dev", "binary_version": "1.8.14-1ubuntu1.16.04.1" }, { "binary_name": "libpcsclite-dev-dbgsym", "binary_version": "1.8.14-1ubuntu1.16.04.1" }, { "binary_name": "libpcsclite1", "binary_version": "1.8.14-1ubuntu1.16.04.1" }, { "binary_name": "libpcsclite1-dbg", "binary_version": "1.8.14-1ubuntu1.16.04.1" }, { "binary_name": "libpcsclite1-dbgsym", "binary_version": "1.8.14-1ubuntu1.16.04.1" }, { "binary_name": "pcscd", "binary_version": "1.8.14-1ubuntu1.16.04.1" }, { "binary_name": "pcscd-dbgsym", "binary_version": "1.8.14-1ubuntu1.16.04.1" } ], "availability": "No subscription required" }