PCLinuxOS-Forums
News: Wishing everyone a Happy 2012
 
Home Help Search Login Register
*
Welcome, Guest. Please login or register. February 11, 2012, 01:21:11 AM


Login with username, password and session length


Main
PCLinuxOS-Forums > Software > Software Announcements > Security Update: gnupg2-2.0.16-2
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Security Update: gnupg2-2.0.16-2  (Read 218 times)
Texstar
Administrator
Super Villain
*****
Offline Offline

Posts: 11861
« on: August 15, 2010, 06:03:59 PM »
Summary
=======

A vulnerability has been fixed in GnuPG,  which  can  be  exploited  by
malicious people to potentially compromise a user's system.


Description
===========

CVE-2010-2547:

Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x
through 2.0.16 allows remote attackers to cause  a  denial  of  service
(crash) and possibly execute arbitrary code via a  certificate  with  a
large number of Subject Alternate Names, which is not properly  handled
in a realloc operation when importing the certificate or verifying  its
signature.


This package will part of your Synaptic Package Manager updates.
Logged
Follow the development of PCLinuxOS on Twitter
Help fund the PCLinuxOS project!

"I'm not so good on advice, can I interest you in a sarcastic reply?"
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines

Valid XHTML 1.0! Valid CSS! Dilber MC Theme by HarzeM