Lucene search
RedhatCVELIST:CVE-2014-3564HistoryOct 20, 2014 - 5:00 p.m.
CVE-2014-3564
2014-10-2017:00:00
redhat
www.cve.org
5
Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to “different line lengths in a specific order.”
References
git.gnupg.org/cgi-bin/gitweb.cgi?p=gpgme.git%3Ba=commit%3Bh=2cbd76f7911fc215845e89b50d6af5ff4a83dd77
seclists.org/oss-sec/2014/q3/266
www.debian.org/security/2014/dsa-3005
www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
www.osvdb.org/109699
www.securityfocus.com/bid/68990
bugzilla.redhat.com/show_bug.cgi?id=1113267
Related
openvas
openvas
Huawei EulerOS: Security Advisory for gpgme (EulerOS-SA-2020-1254)
2020-03-13 00:00:00
Debian: Security Advisory (DLA-39-1)
2023-03-08 00:00:00
Fedora Update for gpgme FEDORA-2014-16451
2015-01-05 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : gpgme (EulerOS-SA-2019-2591)
2019-12-18 00:00:00
RHEL 6 : gpgme (Unpatched Vulnerability)
2024-06-03 00:00:00
Debian DLA-39-1 : gpgme1.0 security update
2015-03-26 00:00:00
debian
debian
[DLA 39-1] gpgme1.0 security update
2014-08-20 18:35:24
[SECURITY] [DSA 3005-1] gpgme1.0 security update
2014-08-14 12:29:52
[SECURITY] [DSA 3005-1] gpgme1.0 security update
2014-08-14 12:29:52
osv
osv
gpgme1.0 - security update
2014-08-14 00:00:00
securityvulns
securityvulns
GnuPG Made Easy memory corruption
2014-08-11 00:00:00
[USN-2307-1] GPGME vulnerability
2014-08-11 00:00:00
ubuntucve
ubuntucve
CVE-2014-3564
2014-08-01 00:00:00
freebsd
freebsd
gpgme -- heap-based buffer overflow in gpgsm status handler
2014-06-25 00:00:00
prion
prion
Heap overflow
2014-10-20 17:55:00
fedora
fedora
[SECURITY] Fedora 20 Update: gpgme-1.3.2-5.fc20
2014-12-27 09:25:12
[SECURITY] Fedora 21 Update: gpgme-1.4.3-5.fc21
2014-12-22 02:37:49
nvd
nvd
CVE-2014-3564
2014-10-20 17:55:05
debiancve
debiancve
CVE-2014-3564
2014-10-20 17:55:05
ubuntu
ubuntu
GPGME vulnerability
2014-08-06 00:00:00
mageia
mageia
Updated gpgme packages fix CVE-2014-3564
2014-08-21 13:36:13
amazon
amazon
Low: gpgme
2015-04-01 13:32:00
cve
cve
CVE-2014-3564
2014-10-20 17:55:05