17 matches found
Ubuntu: Security Advisory (USN-393-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware: Security Advisory (SSA:2006-340-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware: Security Advisory (SSA:2006-340-01b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SLES9: Security update for gpg
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: gpg For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017544 within the SuSE...
Gentoo Security Advisory GLSA 200612-03 (gnupg)
The remote host is missing updates announced in advisory GLSA 200612-03. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1231-1 (gnupg)
The remote host is missing an update to gnupg announced via advisory DSA 1231-1. Several remote vulnerabilities have been discovered in the GNU privacy, a free PGP replacement, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the...
SuSE 10 Security Update : gpg2 (ZYPP Patch Number 2354)
Specially crafted files could overflow a buffer when gpg2 was used in interactive mode. CVE-2006-6169 - Specially crafted files could modify a function pointer and execute code this way. CVE-2006-6235 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...
Ubuntu 6.10 : gnupg2 vulnerabilities (USN-393-2)
USN-389-1 and USN-393-1 fixed vulnerabilities in gnupg. This update provides the corresponding updates for gnupg2. A buffer overflow was discovered in GnuPG. By tricking a user into running gpg interactively on a specially crafted message, an attacker could execute arbitrary code with the user's...
openSUSE 10 Security Update : gpg2 (gpg2-2352)
Specially crafted files could overflow a buffer when gpg2 was used in interactive mode CVE-2006-6169. - Specially crafted files could modify a function pointer and execute code this way CVE-2006-6235. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
openSUSE 10 Security Update : gpg (gpg-2353)
Specially crafted files could overflow a buffer when gpg2 was used in interactive mode CVE-2006-6169. - Specially crafted files could modify a function pointer and execute code this way CVE-2006-6235. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
openSUSE 10 Security Update : gpg (gpg-2388)
Specially crafted files could overflow a buffer when gpg was used in interactive mode CVE-2006-6169. - Specially crafted files could modify a function pointer and execute code this way CVE-2006-6235. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
Fedora Core 5 : gnupg-1.4.6-1 (2006-1405)
This update upgrades GnuPG to version 1.4.6, incorporating fixes for a potential buffer overflow CVE-2006-6169 and referencing of a stack variable after it passes out of scope CVE-2006-6235. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
Important gnupg security update
1.2.6-8 - incorporate patch from Werner to fix use of stack variable after it goes out of scope CVE-2006-6235, 218480 1.2.6-7 - add patch for overflow in openfile.c from Werner's mail CVE-2006-6169...
[slackware-security] gnupg [resigned]
Hello, As many people have pointed out, the last advisory SSA:2006-340-01 was not signed with the usual Slackware Security Team key fingerprint 40102233. I did some reconfiguration on the box that does the distribution signing and it had some unintended side-effects. :-/ Several CHECKSUMS.md5.asc...
gnupg security update
CentOS Errata and Security Advisory CESA-2006:0754-01 Updated GnuPG packages that fix two security issues are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. GnuPG is a utility for encrypting data and creating digital signatures...
GnuPG: remotely controllable function pointer [CVE-2006-6235]
GnuPG: remotely controllable function pointer CVE-2006-6235 =============================================================== 2006-12-04 Summary ======= Tavis Ormandy of the Gentoo security team identified a severe and exploitable bug in the processing of encrypted packets in GnuPG. Please do not...
[slackware-security] gnupg
New gnupg packages are available for Slackware 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix security issues. More details about the issues may be found here: http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000491.html https://vulners.com/cve/CVE-2006-6235 https://vulners.com/cve/CVE-2006-61...