10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.015 Low
EPSS
Percentile
85.6%
The GNU Privacy Guard (GnuPG) is a utility for encrypting data and
creating digital signatures.
When evaluating trust values for the UIDs assigned to a given key,
GnuPG versions earlier than 1.2.2 would incorrectly associate the trust
value of the UID having the highest trust value with every UID assigned to
this key. This would prevent an expected warning message from being generated.
All users are advised to upgrade to these errata packages which include an
update to GnuPG 1.0.7 containing patches from the GnuPG
development team to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ia64 | gnupg | < 1.0.7-7.2.1 | gnupg-1.0.7-7.2.1.ia64.rpm |
RedHat | any | i386 | gnupg | < 1.0.7-7.2.1 | gnupg-1.0.7-7.2.1.i386.rpm |