Mandriva Linux Security Advisory : opensc (MDVSA-2009:123)
Medium Nessus Plugin ID 48146
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
Descriptionsrc/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted (CVE-2009-1603).
The updated packages fix the issue.
SolutionUpdate the affected packages.