pcsc-lite (1.7.4-2ubuntu2.1) precise-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
cardsList use-after-free
- debian/patches/CVE-2016-10109-1.patch: prevent use-after-free of
cardsList in src/winscard_svc.c.
- debian/patches/CVE-2016-10109-2.patch: check for a valid hContext
handles in src/winscard_svc.c.
- CVE-2016-10109
-- Marc Deslauriers <email address hidden> Fri, 06 Jan 2017 10:36:30 -0500