Lucene search
K

410 matches found

OSV
OSV
added 2013/10/10 12:0 a.m.52 views

DSA-2774-1 gnupg2 - several

Bulletin has no description...

5.8CVSS7.8AI score0.0503EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/10/10 12:0 a.m.33 views

Debian Security Advisory DSA 2774-1 (gnupg2 - several vulnerabilities)

Two vulnerabilities were discovered in GnuPG 2, the GNU privacy guard, a free PGP replacement. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-4351When a key or subkey had its key flags subpacket set to all bits off, GnuPG currently would treat the key...

5.8CVSS8.1AI score0.0503EPSS
Exploits0References1
OSV
OSV
added 2013/10/10 12:0 a.m.42 views

DSA-2773-1 gnupg - several

Bulletin has no description...

5.8CVSS7.8AI score0.0503EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/10/09 12:0 a.m.21 views

Debian: Security Advisory (DSA-2773-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS8.8AI score0.0503EPSS
Exploits0References3
Fedora
Fedora
added 2013/08/15 2:56 a.m.30 views

[SECURITY] Fedora 18 Update: gnupg-1.4.14-1.fc18

GnuPG GNU Privacy Guard is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with...

1.9CVSS2.7AI score0.00533EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/08/08 12:0 a.m.28 views

Fedora Update for libgcrypt FEDORA-2013-13671

Check for the Version of libgcrypt OpenVAS Vulnerability Test Fedora Update for libgcrypt FEDORA-2013-13671 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

1.9CVSS0.3AI score0.00533EPSS
Exploits0References2
Fedora
Fedora
added 2013/08/02 3:22 a.m.29 views

[SECURITY] Fedora 19 Update: libgcrypt-1.5.3-1.fc19

Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version...

1.9CVSS2.5AI score0.00533EPSS
Exploits0
Fedora
Fedora
added 2013/08/02 3:21 a.m.50 views

[SECURITY] Fedora 18 Update: libgcrypt-1.5.3-1.fc18

Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version...

1.9CVSS2.5AI score0.00533EPSS
Exploits0
OSV
OSV
added 2013/07/24 12:1 p.m.3 views

DEBIAN-CVE-2012-6581

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...

4.3CVSS7AI score0.012EPSS
Exploits0References1
OSV
OSV
added 2013/07/24 12:1 p.m.4 views

DEBIAN-CVE-2012-6580

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, does not ensure that the UI labels unencrypted messages as unencrypted, which might make it easier for remote attackers to spoof details of a message's origin or interfere with encryption-policy auditin...

4.3CVSS7AI score0.00635EPSS
Exploits0References1
OSV
OSV
added 2013/07/24 12:1 p.m.4 views

DEBIAN-CVE-2012-6579

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to configure encryption or signing for certain outbound e-mail, and possibly cause a denial of service loss of e-mail readability, via an e-mail message to a queue's address...

6.4CVSS6.6AI score0.00792EPSS
Exploits0References1
OSV
OSV
added 2013/07/24 12:1 p.m.3 views

UBUNTU-CVE-2012-6578

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled with a "Sign by default" queue configuration, uses a queue's key for signing, which might allow remote attackers to spoof messages by leveraging the lack of authentication semantics...

4.3CVSS5.8AI score0.01061EPSS
Exploits0References3
OSV
OSV
added 2013/07/24 12:1 p.m.5 views

UBUNTU-CVE-2012-6579

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to configure encryption or signing for certain outbound e-mail, and possibly cause a denial of service loss of e-mail readability, via an e-mail message to a queue's address...

6.4CVSS5.8AI score0.00792EPSS
Exploits0References3
OSV
OSV
added 2013/07/24 12:1 p.m.3 views

UBUNTU-CVE-2012-6581

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...

4.3CVSS6AI score0.012EPSS
Exploits0References3
OSV
OSV
added 2013/07/24 12:1 p.m.3 views

UBUNTU-CVE-2012-6580

Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, does not ensure that the UI labels unencrypted messages as unencrypted, which might make it easier for remote attackers to spoof details of a message's origin or interfere with encryption-policy auditin...

4.3CVSS5.8AI score0.00635EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/01/21 12:0 a.m.27 views

Fedora Update for gnupg FEDORA-2013-0377

Check for the Version of gnupg OpenVAS Vulnerability Test Fedora Update for gnupg FEDORA-2013-0377 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

5.8CVSS7.6AI score0.02912EPSS
Exploits1References2
OSV
OSV
added 2012/11/11 1:0 p.m.2 views

DEBIAN-CVE-2012-4884

Argument injection vulnerability in Request Tracker RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote attackers to create arbitrary files via unspecified vectors related to the GnuPG client...

5CVSS7.2AI score0.0157EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2012/11/05 8:18 p.m.6 views

Cross-VM Side-channel attacks against cryptography keys

A group of researchers has developed a side-channel attack targeting virtual machines that could pose a threat to cloud computing environments. Side-channel attacks against cryptography keys have, until now, been limited to physical machines, this attack is the first such attack demonstrated on a...

6.6AI score
Exploits0
Kitploit
Kitploit
added 2012/11/02 3:23 p.m.25 views

[Android Privacy Guard v1.0.8] OpenPGP for Android

There's no public key encryption for Android yet, but that's an important feature for many of us. Android Privacy Guard is to manage OpenPGP keys on your phone, use them to encrypt, sign, decrypt emails and files. Change log v1.0.8 HKP key server support app2sd support more pass phrase cache...

7.3AI score
Exploits0
OSV
OSV
added 2012/06/19 8:55 p.m.1 views

DEBIAN-CVE-2012-0954

APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might allow remote attackers to install altered packages via a man-in-the-middle MITM attack. NOTE: this vulnerability exists...

2.6CVSS7AI score0.02211EPSS
Exploits0References1
Rows per page
Query Builder