Download
| Alert*
oval:org.secpod.oval:def:106229
GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn"t use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:16528 The host is installed with GnuPG 1.x before 1.4.16 and Gpg4win and is prone to information disclosure vulnerability. A flaws is present in the application, which is caused by generation of RSA keys using sequences of introductions with certain patterns that introduce a side channel, which allows phy ... oval:org.secpod.oval:def:203008 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with the proposed OpenPGP Internet standard and the S/MIME standard. It was found that GnuPG was vulnerable to side-channel attacks via acoustic cryptanalysis. An attacker in close range to a target syste ... oval:org.secpod.oval:def:106224 GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn"t use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:108515 GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn"t use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:501172 The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with the proposed OpenPGP Internet standard and the S/MIME standard. It was found that GnuPG was vulnerable to side-channel attacks via acoustic cryptanalysis. An attacker in close range to a target syste ... oval:org.secpod.oval:def:701520 gnupg: GNU privacy guard - a free PGP replacement GnuPG could expose sensitive information when performing decryption. oval:org.secpod.oval:def:1600144 GnuPG 1.x before 1.4.16 generates RSA keys using sequences of introductions with certain patterns that introduce a side channel, which allows physically proximate attackers to extract RSA keys via a chosen-ciphertext attack and acoustic cryptanalysis during decryption. NOTE: applications are not typ ... oval:org.secpod.oval:def:107136 GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn"t use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:106322 GnuPG is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn"t use any patented algorithm, it is not compatible with any version of PGP2 ... oval:org.secpod.oval:def:1300258 A vulnerability has been discovered and corrected in gnupg: Genkin, Shamir and Tromer discovered that RSA key material could be extracted by using the sound generated by the computer during the decryption of some chosen ciphertexts . The updated packages have been patched to correct this issue. oval:org.secpod.oval:def:601176 Genkin, Shamir and Tromer discovered that RSA key material could be extracted by using the sound generated by the computer during the decryption of some chosen ciphertexts. oval:org.secpod.oval:def:1500357 An updated gnupg package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available ... |