Multiple heap-based buffer overflow vulnerabilities in the status_handler function in gpgmeID: oval:org.secpod.oval:def:21834 | Date: (C)2014-12-03 (M)2023-02-20 |
Class: VULNERABILITY | Family: unix |
The host is installed with gpgme before 1.5.1 and is prone to multiple heap-based buffer overflow vulnerabilities. The flaws are present in the application, which fails to properly handle vectors related to "different line lengths in a specific order". Successful exploitation allow remote attackers to cause a denial of service (crash).
Platform: |
Red Hat Enterprise Linux 7 |
Red Hat Enterprise Linux 6 |