Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2012:7053

Overview

Id SUSE-2012:7053
Name Novell SUSE 2012:7053 openCryptoki security update for SLES 11 SP2 x86_64
Vendor Name novell
Product None
Content Type Critical - 01 Critical - 01
Language(s)
Operating System(s) Linux 
Released On 14 Nov 2012 12:00:00

SUSE-2012:7053

Novell SUSE 2012:7053 openCryptoki security update for SLES 11 SP2 x86_64

Vendor Name

novell

Product

None

Released On

14 Nov 2012 12:00:00

Url

http://www.novell.com/support/search.do?usemicrosite=true&searchString=3d89df77a465676cbc083fecea39d16f

Description

LSAC(v2)
openCryptoki had insecure lock file handling, which might have allowed local users with pkcs11 privileges to look at other local users pkcs11 credentials. Some additional small fixes in pkcsslotd were fixed: * Set pkcsslotd pid to /var/run/pkcsslotd.pid * Removed spurious '-' before no-header option on ps * Sending output of pkcs11_startup to syslog via logger Security Issue references: * CVE-2012-4454 * CVE-2012-4455

Related Resources

Related Vulnerabilities

CVE-2012-4454   CVE-2012-4455  

Related Patches

Superseded Patches

None


Last Updated: 27 May 2016 11:15:58