Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.11 views

openSUSE Security Update : gpg2 (openSUSE-SU-2010:0479-1)

GnuPG2 was vulnerable to arbitrary code execution by context-dependent attackers because of reusing a freed pointer when verifying a signature or importing a certificate with many 'Subject Alternate Names'. CVE-2010-2547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...

8.1CVSS8.3AI score0.05342EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.23 views

Scientific Linux Security Update : gnupg2 on SL5.x i386/x86_64

A use-after-free flaw was found in the way gpgsm, a Cryptographic Message Syntax CMS encryption and signing tool, handled X.509 certificates with a large number of Subject Alternate Names. A specially crafted X.509 certificate could, when imported, cause gpgsm to crash or, possibly, execute...

8.1CVSS7.8AI score0.05342EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.16 views

CentOS Update for gnupg2 CESA-2010:0603 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

8.1CVSS7.8AI score0.05342EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.18 views

SuSE 11 / 11.1 Security Update : gpg2 (SAT Patch Numbers 2820 / 2822)

This update fixes a vulnerability of GnuPG2 to arbitrary code execution by context-dependent attackers due to reusing a freed pointer when verifying a signature or importing a certificate with many 'Subject Alternate Names'. CVE-2010-2547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

8.1CVSS7.7AI score0.05342EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/10/11 12:0 a.m.19 views

SuSE 10 Security Update : gpg2 (ZYPP Patch Number 7107)

This update fixes a vulnerability of GnuPG2 to arbitrary code execution by context-dependent attackers due to reusing a freed pointer when verifying a signature or importing a certificate with many 'Subject Alternate Names'. CVE-2010-2547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

8.1CVSS7.7AI score0.05342EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/08/09 12:0 a.m.31 views

CentOS 5 : gnupg2 (CESA-2010:0603)

An updated gnupg2 package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.1CVSS7.7AI score0.05342EPSS
Exploits0References3
Cent OS
Cent OS
added 2010/08/06 11:35 a.m.63 views

gnupg2 security update

CentOS Errata and Security Advisory CESA-2010:0603 An updated gnupg2 package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...

8.1CVSS7.2AI score0.05342EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2010/08/06 12:0 a.m.27 views

openSUSE Security Update : gpg2 (openSUSE-SU-2010:0479-1)

GnuPG2 was vulnerable to arbitrary code execution by context-dependent attackers because of reusing a freed pointer when verifying a signature or importing a certificate with many 'Subject Alternate Names'. CVE-2010-2547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...

8.1CVSS8.3AI score0.05342EPSS
Exploits0References3
NVD
NVD
added 2010/08/05 6:17 p.m.18 views

CVE-2010-2547

Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled in a realloc...

8.1CVSS8.3AI score0.05342EPSS
Exploits0References18
OSV
OSV
added 2010/08/05 6:17 p.m.5 views

CVE-2010-2547

Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled in a realloc...

8.1CVSS8.3AI score
Exploits0References24
CVE
CVE
added 2010/08/05 6:0 p.m.89 views

CVE-2010-2547

GnuPG 2.x is affected by CVE-2010-2547: a use-after-free in gpgsm/kbx-blob.c when importing or verifying a certificate with a large number of Subject Alternative Names can be exploited to crash the process or possibly execute arbitrary code. Impact is a denial of service with potential remote cod...

8.1CVSS8.2AI score0.05342EPSS
Exploits0References18Affected Software1
UbuntuCve
UbuntuCve
added 2010/08/05 12:0 a.m.30 views

CVE-2010-2547

Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled in a realloc...

8.1CVSS7.5AI score0.05342EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2010/08/05 12:0 a.m.25 views

RHEL 5 : gnupg2 (RHSA-2010:0603)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2010:0603 advisory. - GnuPG 2: use-after-free when importing certificate with many alternate names CVE-2010-2547 Note that Nessus has not tested for this issue but has...

8.1CVSS7.6AI score0.05342EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2010/08/04 12:0 a.m.34 views

gnupg2 security update

2.0.10-3.1 - fix use after free when importing certain X509 certificates CVE-2010-2547 618156...

5.1CVSS1.1AI score0.05342EPSS
Exploits0
OpenVAS
OpenVAS
added 2010/08/02 12:0 a.m.24 views

Mandriva Update for gnupg2 MDVSA-2010:143 (gnupg2)

Check for the Version of gnupg2 OpenVAS Vulnerability Test Mandriva Update for gnupg2 MDVSA-2010:143 gnupg2 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

5.1CVSS6.5AI score0.05342EPSS
Exploits0References2
Debian
Debian
added 2010/07/27 8:4 p.m.22 views

[SECURITY] [DSA 2076-1] New gnupg2 packages fix potential code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-2076-1 [email protected] http://www.debian.org/security/ Florian Weimer July 27, 2010 http://www.debian.org/security/faq -...

8.1CVSS8.1AI score0.05342EPSS
Exploits0
Rows per page
Query Builder