LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

gnupg: stack overwrite

Package(s):gnupg CVE #(s):CVE-2006-6235
Created:December 12, 2006 Updated:March 13, 2007
Description: A "stack overwrite" vulnerability in GnuPG (gpg) allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated stack memory.
Alerts:
Fedora FEDORA-2007-316 2007-03-12
Fedora FEDORA-2007-315 2007-03-12
SuSE SUSE-SA:2006:075 2006-12-13
Mandriva MDKSA-2006:228 2006-12-11
(Log in to post comments)

gnupg: stack overwrite

Posted Dec 14, 2006 10:19 UTC (Thu) by mjcox@redhat.com (subscriber, #31775) [Link]

Red Hat : http://rhn.redhat.com/errata/RHSA-2006-0754.html : 2006-12-06

gnupg: stack overwrite

Posted Dec 14, 2006 14:47 UTC (Thu) by tseaver (subscriber, #1544) [Link]

Ubuntu: USN-393-1 2006-12-06 http://www.ubuntu.com/usn/usn-393-1

gnupg: stack overwrite

Posted Dec 21, 2006 19:48 UTC (Thu) by kmccarty (subscriber, #12085) [Link]

Debian: DSA-1231-1 http://www.us.debian.org/security/2006/dsa-1231 2006-12-09

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds