CVE-2016-10109

Published: Feb 23, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

Use-after-free vulnerability in pcsc-lite before 1.8.20 allows a remote attackers to cause denial of service (crash) via a command that uses "cardsList" after the handle has been released through the SCardReleaseContext function.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

GLSA-201702-01

vendor-advisory

x_refsource_GENTOO

USN-3176-1

vendor-advisory

x_refsource_UBUNTU

[pcsclite-muscle] 20161226 New pcsc-lite 1.8.20

mailing-list

x_refsource_MLIST

DSA-3752

vendor-advisory

x_refsource_DEBIAN

95263

vdb-entry

x_refsource_BID

[oss-security] 20170103 Re: CVE Request: pcsc-lite use-after-free and double-free

mailing-list

x_refsource_MLIST

https://salsa.debian.org/rousseau/PCSC/-/commit/697fe05967af7ea215bcd5d5774be587780c9e22

x_refsource_CONFIRM

[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

x_refsource_MLIST

[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10109

Description

Affected Products

References