12 matches found
Mageia: Security Advisory (MGASA-2019-0108)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2019-2349)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Photon OS 1.0: Gnupg PHSA-2019-1.0-0237
An update of the gnupg package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0237. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid126197...
Fedora Update for gnupg2 FEDORA-2019-75a8da28f0
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Updated gnupg2 packages fix security vulnerability
GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery CSRF vulnerability in dirmngr that can result in Attacker controlled CSRF, Information Disclosure, DoS. This attack appear to be exploitable via Victim must perform a WKD request, e.g. enter an email address in the composer window...
Fedora Update for gnupg2 FEDORA-2019-e70c729d8a
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 28 : gnupg2 (2019-e70c729d8a)
Minor update to upstream version 2.2.12 fixing moderate security issue and other bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 29 : gnupg2 (2019-75a8da28f0)
Minor update to upstream version 2.2.12 fixing moderate security issue and other bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...
Security update for gpg2 (moderate)
openSUSE Security Update: Security update for gpg2 Announcement ID: openSUSE-SU-2019:0020-1 Rating: moderate References: 1120346 Cross-References: CVE-2018-1000858 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for gpg2 fixe...
SUSE SLED15 / SLES15 Security Update : gpg2 (SUSE-SU-2019:0023-1)
This update for gpg2 fixes the following issue : Security issue fixed : CVE-2018-1000858: Fixed a Cross Site Request ForgeryCSRF vulnerability in dirmngr that can result in Attacker controlled CSRF bsc1120346. Note that Tenable Network Security has extracted the preceding description block direct...
SUSE-SU-2019:0023-1 Security update for gpg2
This update for gpg2 fixes the following issue: Security issue fixed: - CVE-2018-1000858: Fixed a Cross Site Request ForgeryCSRF vulnerability in dirmngr that can result in Attacker controlled CSRF bsc1120346...
CVE-2018-1000858
CVE-2018-1000858 : GnuPG versions 2.1.12–2.2.11 contain a CSRF in dirmngr that can lead to attacker-controlled CSRF, information disclosure and DoS. Exploitation requires a WKD request (e.g., user entering an email in Thunderbird/Enigmail). The issue is stated to have been fixed after commit 4a4b...