Lucene search
UbuntuUSN-1682-1HistoryJan 09, 2013 - 12:00 a.m.
GnuPG vulnerability
2013-01-0900:00:00
ubuntu.com
31
6.4 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.05 Low
EPSS
Percentile
92.8%
Releases
- Ubuntu 12.10
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 10.04
- Ubuntu 8.04
Packages
- gnupg - GNU privacy guard - a free PGP replacement
- gnupg2 - GNU privacy guard - a free PGP replacement
Details
KB Sriram discovered that GnuPG incorrectly handled certain malformed keys.
If a user or automated system were tricked into importing a malformed key,
the GnuPG keyring could become corrupted.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | gnupg | < 1.4.6-2ubuntu5.2 | UNKNOWN |
| Ubuntu | 8.04 | noarch | gnupg-udeb | < 1.4.6-2ubuntu5.2 | UNKNOWN |
| Ubuntu | 8.04 | noarch | gpgv | < 1.4.6-2ubuntu5.2 | UNKNOWN |
| Ubuntu | 8.04 | noarch | gpgv-udeb | < 1.4.6-2ubuntu5.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gnupg2 | < 2.0.17-2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gnupg-agent | < 2.0.17-2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gpgsm | < 2.0.17-2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gnupg | < 1.4.11-3ubuntu4.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gnupg-curl | < 1.4.11-3ubuntu4.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gnupg-udeb | < 1.4.11-3ubuntu4.1 | UNKNOWN |
References
Related
openvas
openvas
Fedora Update for gnupg FEDORA-2013-0377
2013-01-21 00:00:00
F5 BIG-IP - GnuPG vulnerability CVE-2012-6085
2016-02-23 00:00:00
securityvulns
securityvulns
GnuPG memory corruption
2013-01-02 00:00:00
ESA-2015-002: Unisphere Central Security Update for Multiple Vulnerabilities
2015-02-02 00:00:00
nessus
nessus
Fedora 16 : gnupg2-2.0.19-7.fc16 (2013-0222)
2013-01-21 00:00:00
Fedora 16 : gnupg-1.4.13-2.fc16 (2013-0477)
2013-01-21 00:00:00
SuSE 11.3 Security Update : gpg2 (SAT Patch Number 7919)
2013-07-18 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: gnupg2-2.0.19-7.fc16
2013-01-20 02:58:52
[SECURITY] Fedora 18 Update: gnupg-1.4.13-2.fc18
2013-01-10 03:09:49
[SECURITY] Fedora 17 Update: gnupg2-2.0.19-7.fc17
2013-01-12 15:23:52
cve
cve
CVE-2012-6085
2013-01-24 01:55:00
ubuntucve
ubuntucve
CVE-2012-6085
2012-12-31 00:00:00
f5
f5
K11785283 : GnuPG vulnerability CVE-2012-6085
2016-02-19 00:00:00
SOL11785283 - GnuPG vulnerability CVE-2012-6085
2016-02-19 00:00:00
osv
osv
gnupg - missing input sanitation
2013-01-06 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:00:59
Denial Of Service (DOS)
2019-05-02 04:56:46
Information Disclosure
2019-05-02 04:56:46
debiancve
debiancve
CVE-2012-6085
2013-01-24 01:55:00
prion
prion
Design/Logic Flaw
2013-01-24 01:55:00
debian
debian
[SECURITY] [DSA 2601-1] gnupg, gnupg2 security update
2013-01-06 18:04:57
centos
centos
gnupg2 security update
2013-10-24 16:06:44
gnupg security update
2013-10-25 14:00:34
redhat
redhat
(RHSA-2013:1459) Moderate: gnupg2 security update
2013-10-24 00:00:00
(RHSA-2013:1458) Moderate: gnupg security update
2013-10-24 00:00:00
oraclelinux
oraclelinux
gnupg2 security update
2013-10-24 00:00:00
gnupg security update
2013-10-24 00:00:00
gentoo
gentoo
GnuPG, Libgcrypt: Multiple vulnerabilities
2014-02-21 00:00:00
6.4 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.05 Low
EPSS
Percentile
92.8%
Related for USN-1682-1