Download
| Alert*
oval:org.secpod.oval:def:507146
The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix: * gpg: Signature spoofing via status line injection For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:86399 Demi Marie Obenour discovered a flaw in GnuPG, allowing for signature spoofing via arbitrary injection into the status line. An attacker who controls the secret part of any signing-capable key or subkey in the victim"s keyring, can take advantage of this flaw to provide a correctly-formed signature ... oval:org.secpod.oval:def:507163 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix: * gpg: Signature spoofing via status line injection For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:608626 Demi Marie Obenour discovered a flaw in GnuPG, allowing for signature spoofing via arbitrary injection into the status line. An attacker who controls the secret part of any signing-capable key or subkey in the victim"s keyring, can take advantage of this flaw to provide a correctly-formed signature ... oval:org.secpod.oval:def:3301275 SUSE Security Update: Security update for gpg2 oval:org.secpod.oval:def:19500179 A vulnerability was found in GnuPG. This issue occurs due to an escape detection loop at the write_status_text_and_buffer function in g10/cpr.c. This flaw allows a malicious actor to bypass access control oval:org.secpod.oval:def:1601577 A vulnerability was found in GnuPG. This issue occurs due to an escape detection loop at the write_status_text_and_buffer function in g10/cpr.c. This flaw allows a malicious actor to bypass access control oval:org.secpod.oval:def:1506023 [2.3.3-2] - Fix CVE-2022-34903 oval:org.secpod.oval:def:1505996 [2.2.20-3] - Fix CVE-2022-34903 oval:org.secpod.oval:def:2500800 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. oval:org.secpod.oval:def:5800065 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix: * gpg: Signature spoofing via status line injection For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... oval:org.secpod.oval:def:89046805 This update for gpg2 fixes the following issues: - CVE-2022-34903: Fixed a status injection vulnerability . oval:org.secpod.oval:def:1700995 A vulnerability was found in GnuPG. This issue occurs due to an escape detection loop at the write_status_text_and_buffer function in g10/cpr.c. This flaw allows a malicious actor to bypass access control oval:org.secpod.oval:def:123644 GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:89047524 This update for gpg2 fixes the following issues: - CVE-2022-34903: Fixed a status injection vulnerability . - Use AES as default cipher instead of 3DES when we are in FIPS mode oval:org.secpod.oval:def:123628 GnuPG is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440 and the S/MIME standard as described by ... oval:org.secpod.oval:def:123640 GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:707464 gnupg2: GNU privacy guard - a free PGP replacement GnuPG could allow forged signatures. oval:org.secpod.oval:def:123050 GnuPG is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440 and the S/MIME standard as described by ... oval:org.secpod.oval:def:88550 gnupg2: GNU privacy guard - a free PGP replacement GnuPG could allow forged signatures. oval:org.secpod.oval:def:2600083 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. oval:org.secpod.oval:def:89046959 This update for gpg2 fixes the following issues: - CVE-2022-34903: Fixed a potential signature forgery via injection into the status line when certain unusual conditions are met . oval:org.secpod.oval:def:4500976 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix: * gpg: Signature spoofing via status line injection For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ot ... |