[Tokend-Dev] Re-compiling your Tokend Source for security fix [SCSSU-201401] to address CVE-2013-1867

Shawn A. Geddis geddis at apple.com
Thu Jan 16 11:42:31 PST 2014

Tokend-Dev Community,

I wanted to highlight that the security fix [SCSSU-201401] for addressing CVE-2013-1867 was included in the recent release of installers I posted.  However, each one of you that has developed your own Tokend for OS X, will want to ensure you pickup the change.

The fix was noted in Ticket #109

And the source code diffs are at Changeset #158 

if any of you have any questions, fire away here on the list.

- Shawn
Shawn Geddis				  			          geddis at me.com
Enterprise Security Consulting Engineer, Apple     geddis at apple.com

Smart Card Services  Project/Dev Lead:                                                                                 
				Project Wiki:		          [SmartCardServices.MacOSFforge.Org]
				Mailing Lists:		         [Lists.MacOSForge.Org/mailman/listinfo]
				SCS Contact:				           [scs-cotact at macosforge.org]
				SCS Admin:				           [scs-admin at macosforge.org]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.macosforge.org/pipermail/tokend-dev/attachments/20140116/25c8e26d/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4455 bytes
Desc: not available
URL: <https://lists.macosforge.org/pipermail/tokend-dev/attachments/20140116/25c8e26d/attachment.p7s>

More information about the Tokend-Dev mailing list