Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 218	Published: Tue, 05 May 2009 00:54:33  GMT

New Fixlets:
============

***************************************************************
Title: PATCH-B9043001 - Security update for OpenSC - SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 904300101
Fixlet Link: http://download.novell.com/Download?buildid=pJK0-4gy_cc~

Fixlet Description: Private data objects on smartcards initialized with OpenSC could be accessed without authentication (CVE-2009-0368). Only blank cards initialized with OpenSC are affected by this problem. Affected cards need to be manually fixed, updating the opensc package alone is not sufficient! Please carefully read and follow the instructions on the following web site if you are using PIN protected private data objects on smart cards other than Oberthur, and you have initialized those cards using OpenSC: http://en. opensuse. org/Smart_Cards/Advisories Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9043001 - Security update for OpenSC - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 904300103
Fixlet Link: http://download.novell.com/Download?buildid=7WoPE5je0Wo~

Fixlet Description: Private data objects on smartcards initialized with OpenSC could be accessed without authentication (CVE-2009-0368). Only blank cards initialized with OpenSC are affected by this problem. Affected cards need to be manually fixed, updating the opensc package alone is not sufficient! Please carefully read and follow the instructions on the following web site if you are using PIN protected private data objects on smart cards other than Oberthur, and you have initialized those cards using OpenSC: http://en. opensuse. org/Smart_Cards/Advisories Everyone should update. Please see patch page for more detailed information.