Synopsis: Moderate: pcsc-lite security update Issue date: 2010-07-14 CVE Names: CVE-2009-4901 CVE-2010-0407 Multiple buffer overflow flaws were discovered in the way the pcscd daemon, a resource manager that coordinates communications with smart card readers and smart cards connected to the system, handled client requests. A local user could create a specially-crafted request that would cause the pcscd daemon to crash or, possibly, execute arbitrary code. (CVE-2010-0407, CVE-2009-4901) After installing this update, the pcscd daemon will be restarted automatically. SL 5.x SRPMS: pcsc-lite-1.4.4-4.el5_5.src.rpm i386: pcsc-lite-1.4.4-4.el5_5.i386.rpm pcsc-lite-devel-1.4.4-4.el5_5.i386.rpm pcsc-lite-doc-1.4.4-4.el5_5.i386.rpm pcsc-lite-libs-1.4.4-4.el5_5.i386.rpm x86_64: pcsc-lite-1.4.4-4.el5_5.x86_64.rpm pcsc-lite-devel-1.4.4-4.el5_5.i386.rpm pcsc-lite-devel-1.4.4-4.el5_5.x86_64.rpm pcsc-lite-doc-1.4.4-4.el5_5.x86_64.rpm pcsc-lite-libs-1.4.4-4.el5_5.i386.rpm pcsc-lite-libs-1.4.4-4.el5_5.x86_64.rpm -Connie Sieh -Troy Dawson