18 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-1607
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote...
SUSE: Security Advisory (SUSE-SU-2015:2170-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:2171-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:2171-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : gnupg2 (EulerOS-SA-2020-2348)
According to the versions of the gnupg2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service invalid...
Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2020-1563)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-1607
kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service invalid read operation via a crafted keyring file, related to sign extensions and "memcpy with overlappi...
DEBIAN-CVE-2015-1607
kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service invalid read operation via a crafted keyring file, related to sign extensions and "memcpy with overlappi...
CVE-2015-1607
Technical details of CVE-2015-1607 are not provided in the connected documents. The Initial Description mentions GNUPG but lacks vendor/product/version specifics beyond that. Monitor for updates.
CVE-2015-1607
kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service invalid read operation via a crafted keyring file, related to sign extensions and "memcpy with overlappi...
SUSE SLED12 / SLES12 Security Update : gpg2 (SUSE-SU-2015:2171-2)
The gpg2 package was updated to fix the following security and non security issues : - CVE-2015-1606: Fixed invalid memory read using a garbled keyring bsc918089. - CVE-2015-1607: Fixed memcpy with overlapping ranges bsc918090. - bsc955753: Fixed a regression of 'gpg --recv' due to keyserver impo...
openSUSE Security Update : gpg2 (openSUSE-2015-886)
The gpg2 package was updated to fix the following security and non security issues : - CVE-2015-1606: Fixed invalid memory read using a garbled keyring bsc918089. - CVE-2015-1607: Fixed memcpy with overlapping ranges bsc918090. - bsc955753: Fixed a regression of 'gpg --recv' due to keyserver impo...
SUSE SLED12 / SLES12 Security Update : gpg2 (SUSE-SU-2015:2171-1)
The gpg2 package was updated to fix the following security and non security issues : - CVE-2015-1606: Fixed invalid memory read using a garbled keyring bsc918089. - CVE-2015-1607: Fixed memcpy with overlapping ranges bsc918090. - bsc955753: Fixed a regression of 'gpg --recv' due to keyserver impo...
SUSE SLED11 / SLES11 Security Update : gpg2 (SUSE-SU-2015:2170-1)
This update for gpg2 fixes the following issues : - Fix cve-2015-1606 bsc918089 - Invalid memory read using a garbled keyring - 0001-Gpg-prevent-an-invalid-memory-read-using-a-garbled- k.patch - Fix cve-2015-1607 bsc918090 - Memcpy with overlapping ranges -...
openSUSE Security Update : GnuPG (openSUSE-2015-840)
GnuPG was updated to fix two memory handling issues with potential security impact : - CVE-2015-1606: Invalid memory read using a garbled keyring bsc918089 - CVE-2015-1607: memcpy with overlapping ranges bsc918090 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...
Ubuntu: Security Advisory (USN-2554-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-1607
kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service invalid read operation via a crafted keyring file, related to sign extensions and "memcpy with overlappi...
UBUNTU-CVE-2015-1607
kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service invalid read operation via a crafted keyring file, related to sign extensions and "memcpy with overlappi...