CVE-2016-10109 log

Severity Medium
Remote No
Type Privilege escalation
The SCardReleaseContext function normally releases resources associated with the given handle (including "cardsList") and clients should cease using this handle. A malicious client can however make the daemon invoke SCardReleaseContext and continue issuing other commands that use "cardsList", resulting in a use-after-free. When SCardReleaseContext is invoked multiple times, it additionally results in a double-free of "cardsList".
The issue allows a local attacker to cause a denial of service, but can potentially result in privilege escalation since the daemon is running as root while any local user can connect to the Unix socket. Fixed by patch "SCardReleaseContext: prevent use-after-free of cardsList" which is released with hpcsc-lite 1.8.20 on 30 December 2016.
Group Package Affected Fixed Severity Status Ticket
AVG-126 pcsclite 1.8.18-1 1.8.20-1 Medium Fixed
Date Advisory Group Package Severity Type
04 Jan 2017 ASA-201701-12 AVG-126 pcsclite Medium privilege escalation