MDVSA-2013:001 -- Mandriva gnupgID: oval:org.secpod.oval:def:302990 | Date: (C)2013-01-18 (M)2023-12-07 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in gnupg: Versions of GnuPG <= 1.4.12 are vulnerable to memory access violations and public keyring database corruption when importing public keys that have been manipulated. An OpenPGP key can be fuzzed in such a way that gpg segfaults when importing the key . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Linux 2011.0 |