Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-6235HistoryDec 07, 2006 - 11:28 a.m.
CVE-2006-6235
2006-12-0711:28:00
Debian Security Bug Tracker
security-tracker.debian.org
11
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.056 Low
EPSS
Percentile
93.2%
A “stack overwrite” vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated stack memory.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | gnupg2 | < 2.0.0-5.2 | gnupg2_2.0.0-5.2_all.deb |
| Debian | 11 | all | gnupg2 | < 2.0.0-5.2 | gnupg2_2.0.0-5.2_all.deb |
| Debian | 10 | all | gnupg2 | < 2.0.0-5.2 | gnupg2_2.0.0-5.2_all.deb |
| Debian | 999 | all | gnupg2 | < 2.0.0-5.2 | gnupg2_2.0.0-5.2_all.deb |
| Debian | 13 | all | gnupg2 | < 2.0.0-5.2 | gnupg2_2.0.0-5.2_all.deb |
Related
openvas
openvas
FreeBSD Ports: gnupg
2008-09-04 00:00:00
Ubuntu: Security Advisory (USN-393-1)
2022-08-26 00:00:00
FreeBSD Ports: gnupg
2008-09-04 00:00:00
nessus
nessus
FreeBSD : gnupg -- remotely controllable function pointer (4db1669c-8589-11db-ac4f-02e081235dab)
2006-12-11 00:00:00
Ubuntu 5.10 / 6.06 LTS / 6.10 : gnupg vulnerability (USN-393-1)
2007-11-10 00:00:00
Mandrake Linux Security Advisory : gnupg (MDKSA-2006:228)
2007-02-18 00:00:00
ubuntu
ubuntu
GnuPG vulnerability
2006-12-07 00:00:00
GnuPG2 vulnerabilities
2006-12-07 00:00:00
securityvulns
securityvulns
GnuPG: remotely controllable function pointer [CVE-2006-6235]
2006-12-07 00:00:00
freebsd
freebsd
gnupg -- remotely controllable function pointer
2006-12-04 00:00:00
ubuntucve
ubuntucve
CVE-2006-6235
2006-12-07 00:00:00
cve
cve
CVE-2006-6235
2006-12-07 11:28:00
cert
cert
GnuPG vulnerable to remote data control
2006-12-18 00:00:00
gentoo
gentoo
GnuPG: Multiple vulnerabilities
2006-12-10 00:00:00
suse
suse
remote code execution in gpg,gpg2
2006-12-13 12:47:52
slackware
slackware
[slackware-security] gnupg [resigned]
2006-12-07 22:03:33
[slackware-security] gnupg
2006-12-06 22:27:00
osv
osv
gnupg
2006-12-09 00:00:00
debian
debian
[SECURITY] [DSA 1231-1] New gnupg packages fix arbitrary code execution
2006-12-09 00:00:00
redhat
redhat
(RHSA-2006:0754) Important: gnupg security update
2006-12-06 00:00:00
oraclelinux
oraclelinux
Important gnupg security update
2006-12-11 00:00:00
centos
centos
gnupg security update
2006-12-07 03:18:30
gnupg security update
2006-12-06 18:36:40
fedora
fedora
[SECURITY] Fedora Core 5 Update: gnupg-1.4.7-1
2007-03-12 19:15:32
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.056 Low
EPSS
Percentile
93.2%
Related for DEBIANCVE:CVE-2006-6235