Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2003:176
HistoryJun 23, 2003 - 12:00 a.m.

(RHSA-2003:176) gnupg security update

2003-06-2300:00:00
access.redhat.com
8

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.015 Low

EPSS

Percentile

85.6%

JSON

The GNU Privacy Guard (GnuPG) is a utility for encrypting data and
creating digital signatures.

When evaluating trust values for the UIDs assigned to a given key,
GnuPG versions earlier than 1.2.2 would incorrectly associate the trust
value of the UID having the highest trust value with every UID assigned to
this key. This would prevent an expected warning message from being generated.

All users are advised to upgrade to these errata packages which include an
update to GnuPG 1.0.7 containing patches from the GnuPG
development team to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyia64gnupg< 1.0.7-7.2.1gnupg-1.0.7-7.2.1.ia64.rpm
RedHatanyi386gnupg< 1.0.7-7.2.1gnupg-1.0.7-7.2.1.i386.rpm

Related

cert 1
nessus 2
cve 1
cert
cert
GnuPG contains flaw in key validation code
2003-05-20 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : gnupg (MDKSA-2003:061)
2004-07-31 00:00:00
RHEL 2.1 : gnupg (RHSA-2003:176)
2004-07-06 00:00:00
cve
cve
CVE-2003-0255
2003-05-27 04:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.015 Low

EPSS

Percentile

85.6%

JSON
Related for RHSA-2003:176
cert1nessus2cve1