7 matches found
RHEL 5 : gnupg2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gnupg2: OpenPGP Key Certification Forgeries with SHA-1 CVE-2019-14855 - mainproc.c in GnuPG before 2.2.8...
K55121327: GnuPG vulnerability CVE-2018-12020
Security Advisory Description mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example,...
EulerOS Virtualization 2.5.2 : gnupg2 (EulerOS-SA-2019-1077)
According to the version of the gnupg2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote...
The vulnerability of the mainproc.c process in the information encryption and electronic digital signature creation software of GNU Privacy Guard allows a perpetrator to compromise the integrity of the protected information.
The vulnerability in the mainproc.c process of the GNU Privacy Guard’s information encryption and digital signatures generation function is related to insufficient validation of input data. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of the protected...
CVE-2018-12020
mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represen...
CVE-2018-12020
mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represen...
CVE-2018-12020
mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represen...