|
|
Log in / Subscribe / Register

gnupg: denial of service

Package(s):gnupg CVE #(s):CVE-2015-1606
Created:March 13, 2015 Updated:March 18, 2015
Description:

From the Debian advisory:

The keyring parsing code did not properly reject certain packet types not belonging in a keyring, which caused an access to memory already freed. This could allow remote attackers to cause a denial of service (crash) via crafted keyring files.

Alerts:
openSUSE openSUSE-SU-2015:2241-1 gpg2 2015-12-10
openSUSE openSUSE-SU-2015:2153-1 GnuPG 2015-11-30
Mageia MGASA-2015-0359 gnupg 2015-09-13
Ubuntu USN-2554-1 gnupg, gnupg2 2015-04-01
Debian-LTS DLA-175-1 gnupg 2015-03-17
Debian DSA-3184-1 gnupg 2015-03-12
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds