Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Update Request]: Thales.SafeNetAuthenticationClient version 10.9.3283.0 (arm64 + x86 + x64) = CVE-2023-7016 patch #173741

Closed
R-Adrian opened this issue Sep 16, 2024 · 0 comments · Fixed by #173818
Closed

[Update Request]: Thales.SafeNetAuthenticationClient version 10.9.3283.0 (arm64 + x86 + x64) = CVE-2023-7016 patch #173741

R-Adrian opened this issue Sep 16, 2024 · 0 comments · Fixed by #173818
Labels
In-PR Package-Update This package needs to be updated

Comments

@R-Adrian
Copy link

R-Adrian commented Sep 16, 2024
edited
Loading

What type of update are you requesting?

A new version of an existing package

Current Package Identifier

Thales.SafeNetAuthenticationClient

Package Version

10.9.3283.0

Please describe the changes you would like to see

General download info: https://knowledge.digicert.com/general-information/how-to-download-safenet-authentication-client

ZIP file, with installers for all 3 platforms (arm64 + x86 + x64) - multiple MSI installers in a single ZIP file:
https://www.digicert.com/StaticFiles/Windows_SAC_10.9_GA.zip

RelativeFilePath locations inside the zip file:

RelativeFilePath: SAC 10.9 GA\Msi\arm64\SafeNetAuthenticationClient-arm64-10.9.msi
RelativeFilePath: SAC 10.9 GA\Msi\x32\SafeNetAuthenticationClient-x32-10.9.msi
RelativeFilePath: SAC 10.9 GA\Msi\x64\SafeNetAuthenticationClient-x64-10.9.msi

(edit note: fixed missing top level folder in that file path there. /edit)

Thales / Gemalto release announcement:
https://data-protection-updates.gemalto.com/2024/04/19/safenet-authentication-client-sac-10-9-for-windows-and-safenet-minidriver-10-9-release-announcement/

CVE-2023-7016 Detail:
https://nvd.nist.gov/vuln/detail/CVE-2023-7016
A flaw in Thales SafeNet Authentication Client prior to 10.8 R10 on Windows allows an attacker to execute code at a SYSTEM level via local access.
@R-Adrian R-Adrian added Help-Wanted This is a good candidate work item from the community. Package-Update This package needs to be updated labels Sep 16, 2024
@microsoft-github-policy-service microsoft-github-policy-service bot added the Needs-Triage This work item needs to be triaged by a member of the core team. label Sep 16, 2024
@R-Adrian R-Adrian mentioned this issue Sep 16, 2024
Merged
7 tasks
@stephengillie stephengillie removed the Needs-Triage This work item needs to be triaged by a member of the core team. label Sep 16, 2024
@Dragon1573 Dragon1573 mentioned this issue Sep 16, 2024
Merged
7 tasks
@microsoft-github-policy-service microsoft-github-policy-service bot added In-PR and removed Help-Wanted This is a good candidate work item from the community. labels Sep 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
In-PR Package-Update This package needs to be updated
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

New version: Thales.SafeNetAuthenticationClient version 10.9.3283.0 Dragon1573/winget-pkgs
2 participants
@R-Adrian @stephengillie