Lucene search
UbuntuUSN-4839-1HistoryMar 15, 2021 - 12:00 a.m.
python-gnupg vulnerabilities
2021-03-1500:00:00
ubuntu.com
18
Releases
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- python-gnupg - Python wrapper for the Gnu Privacy Guard (Python 2.x)
Details
Marcus Brinkmann discovered that python-gnupg improperly handled certain
command line parameters. A remote attacker could use this to spoof the
output of python-gnupg and cause unsigned e-mail to appear signed.
(CVE-2018-12020)
It was discovered that python-gnupg incorrectly handled the GPG passphrase.
A remote attacker could send a specially crafted passphrase that would
allow them to control the output of encryption and decryption operations.
(CVE-2019-6690)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 16.04 | noarch | python3-gnupg | <Â 0.3.8-2ubuntu0.1~esm1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | python-gnupg | <Â 0.3.8-2 | UNKNOWN |
| Ubuntu | 16.04 | noarch | python3-gnupg | <Â 0.3.8-2 | UNKNOWN |
| Ubuntu | 16.04 | noarch | python-gnupg | <Â 0.3.8-2ubuntu0.1~esm1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | python3-gnupg | <Â 0.3.6-1ubuntu0.1~esm1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | python-gnupg | <Â 0.3.6-1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | python3-gnupg | <Â 0.3.6-1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | python-gnupg | <Â 0.3.6-1ubuntu0.1~esm1 | UNKNOWN |
Related
osv
osv
python-gnupg - security update
2021-12-29 00:00:00
python-gnupg vulnerabilities
2021-03-15 22:21:57
PYSEC-2019-115
2019-03-21 16:01:00
nessus
nessus
Debian DLA-2862-1 : python-gnupg - LTS security update
2021-12-29 00:00:00
Ubuntu 18.04 LTS / 18.10 / 19.04 : python-gnupg vulnerabilities (USN-3964-1)
2019-05-03 00:00:00
Ubuntu 16.04 ESM : python-gnupg vulnerabilities (USN-4839-1)
2023-10-20 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2862-1)
2021-12-29 00:00:00
Ubuntu: Security Advisory (USN-3964-1)
2019-05-03 00:00:00
Ubuntu: Security Advisory (USN-4839-1)
2023-01-27 00:00:00
ubuntu
ubuntu
python-gnupg vulnerabilities
2019-05-02 00:00:00
GnuPG 2 vulnerability
2018-06-15 00:00:00
GnuPG vulnerability
2018-06-18 00:00:00
debian
debian
[SECURITY] [DLA 2862-1] python-gnupg security update
2021-12-28 21:14:20
[SECURITY] [DLA 1675-1] python-gnupg security update
2019-02-14 14:00:43
[SECURITY] [DSA 4222-1] gnupg2 security update
2018-06-08 21:51:57
cve
cve
CVE-2019-6690
2019-03-21 16:01:00
CVE-2018-12020
2018-06-08 21:29:00
suse
suse
Security update for python-python-gnupg (important)
2019-02-23 00:00:00
Security update for python-python-gnupg (important)
2019-02-07 00:00:00
Security update for python-python-gnupg (moderate)
2018-06-16 15:12:27
fedora
fedora
[SECURITY] Fedora 30 Update: python-gnupg-0.4.4-1.fc30
2019-06-18 18:15:19
[SECURITY] Fedora 32 Update: python-gnupg-0.4.6-1.fc32
2020-07-13 01:16:33
[SECURITY] Fedora 31 Update: python-gnupg-0.4.6-1.fc31
2020-07-13 01:39:07
debiancve
debiancve
CVE-2019-6690
2019-03-21 16:01:00
CVE-2018-12020
2018-06-08 21:29:00
veracode
veracode
Improper Input Validation
2019-01-28 06:52:12
Spoofable Output
2019-01-15 09:24:16
mageia
mageia
Updated python-gnupg packages fix security vulnerability
2019-03-07 19:34:45
Updated gnupg gnupg2 packages fix a security vulnerability
2018-06-20 02:42:28
Updated thunderbird packages fix security vulnerabilities
2018-08-24 02:35:07
redhatcve
redhatcve
CVE-2019-6690
2019-01-29 12:19:29
CVE-2018-12020
2020-01-11 09:29:40
github
github
Improper Input Validation python-gnupg
2019-03-25 16:17:53
ubuntucve
ubuntucve
CVE-2019-6690
2019-03-21 00:00:00
CVE-2018-12020
2018-06-08 00:00:00
githubexploit
githubexploit
Exploit for Improper Input Validation in Python Python-Gnupg
2019-01-20 15:29:46
prion
prion
Input validation
2019-03-21 16:01:00
Code injection
2018-06-08 21:29:00
cvelist
cvelist
CVE-2019-6690
2019-03-17 17:02:07
CVE-2018-12020
2018-06-08 21:00:00
amazon
amazon
Important: gnupg2
2018-08-08 16:34:00
Important: gnupg, gnupg2
2018-06-27 21:57:00
slackware
slackware
[slackware-security] gnupg2
2018-06-08 20:37:18
[slackware-security] gnupg
2018-06-19 22:39:15
archlinux
archlinux
[ASA-201806-8] gnupg: content spoofing
2018-06-11 00:00:00
oraclelinux
oraclelinux
gnupg2 security update
2018-07-11 00:00:00
gnupg2 security update
2018-07-11 00:00:00
ibm
ibm
redhat
redhat
(RHSA-2018:2181) Important: gnupg2 security update
2018-07-11 19:49:36
(RHSA-2018:2180) Important: gnupg2 security update
2018-07-11 19:49:05
centos
centos
gnupg2 security update
2018-07-13 16:27:56
gnupg2 security update
2018-07-13 16:56:38
f5
f5
K55121327 : GnuPG vulnerability CVE-2018-12020
2018-09-04 00:00:00
thn
thn
GnuPG Flaw in Encryption Tools Lets Attackers Spoof Anyone's Signature
2018-06-15 09:52:00
alpinelinux
alpinelinux
CVE-2018-12020
2018-06-08 21:29:00
cloudfoundry
cloudfoundry
USN-3675-1: GnuPG vulnerabilities | Cloud Foundry
2018-06-20 00:00:00
freebsd
freebsd
gnupg -- unsanitized output (CVE-2018-12020)
2018-06-07 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2019-0207
2019-02-08 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0128
2019-02-13 00:00:00
Critical Photon OS Security Update - PHSA-2019-0128
2019-02-13 00:00:00