18 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-1606
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service invalid read and...
CVE-2015-1606
creationtimestamp| type| source ---|---|--- 2024-02-23 22:21:33+00:00| seen| https://t.me/ctinow/192215...
SUSE: Security Advisory (SUSE-SU-2015:2170-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:2171-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:2171-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : gnupg2 (EulerOS-SA-2020-2348)
According to the versions of the gnupg2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service invalid...
Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2020-1563)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-1606
Technical details for CVE-2015-1606 are not publicly provided in the connected documents. The batch includes unrelated CVEs and generic notes, but no vendor/product/version/root-cause/impact specific to this CVE. Monitor for official updates and disclosures.
SUSE SLED12 / SLES12 Security Update : gpg2 (SUSE-SU-2015:2171-2)
The gpg2 package was updated to fix the following security and non security issues : - CVE-2015-1606: Fixed invalid memory read using a garbled keyring bsc918089. - CVE-2015-1607: Fixed memcpy with overlapping ranges bsc918090. - bsc955753: Fixed a regression of 'gpg --recv' due to keyserver impo...
openSUSE Security Update : gpg2 (openSUSE-2015-886)
The gpg2 package was updated to fix the following security and non security issues : - CVE-2015-1606: Fixed invalid memory read using a garbled keyring bsc918089. - CVE-2015-1607: Fixed memcpy with overlapping ranges bsc918090. - bsc955753: Fixed a regression of 'gpg --recv' due to keyserver impo...
SUSE SLED12 / SLES12 Security Update : gpg2 (SUSE-SU-2015:2171-1)
The gpg2 package was updated to fix the following security and non security issues : - CVE-2015-1606: Fixed invalid memory read using a garbled keyring bsc918089. - CVE-2015-1607: Fixed memcpy with overlapping ranges bsc918090. - bsc955753: Fixed a regression of 'gpg --recv' due to keyserver impo...
SUSE SLED11 / SLES11 Security Update : gpg2 (SUSE-SU-2015:2170-1)
This update for gpg2 fixes the following issues : - Fix cve-2015-1606 bsc918089 - Invalid memory read using a garbled keyring - 0001-Gpg-prevent-an-invalid-memory-read-using-a-garbled- k.patch - Fix cve-2015-1607 bsc918090 - Memcpy with overlapping ranges -...
openSUSE Security Update : GnuPG (openSUSE-2015-840)
GnuPG was updated to fix two memory handling issues with potential security impact : - CVE-2015-1606: Invalid memory read using a garbled keyring bsc918089 - CVE-2015-1607: memcpy with overlapping ranges bsc918090 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...
Low: gnupg2
Issue Overview: It was reported https://blog.fuzzing-project.org/5-Multiple-issues-in-GnuPG-found-through-keyring-fuzzing-TFPA-0012015.html that gnupg2 keyring DB code did not reject packets which don't belong into a keyring, which may lead to invalid read of sizeof int. Affected Packages: gnupg2...
Ubuntu: Security Advisory (USN-2554-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 175-1] gnupg security update
Package : gnupg Version : 1.4.10-4+squeeze7 CVE ID : CVE-2014-3591 CVE-2015-0837 CVE-2015-1606 Debian Bug : 778652 Multiple vulnerabilities were discovered in GnuPG, the GNU Privacy Guard: CVE-2014-3591 The Elgamal decryption routine was susceptible to a side-channel attack discovered by...
[SECURITY] [DSA 3184-1] gnupg security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3184-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini March 12, 2015 http://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3184-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...