Búsqueda de    
Vulnerabilidad   
    Buscar 324607 Descripciones CVE y
145615 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.53899
Categoría:Slackware Local Security Checks
Título:Slackware: Security Advisory (SSA:2003-141-04)
Resumen:The remote host is missing an update for the 'GnuPG' package(s) announced via the SSA:2003-141-04 advisory.
Descripción:Summary:
The remote host is missing an update for the 'GnuPG' package(s) announced via the SSA:2003-141-04 advisory.

Vulnerability Insight:
A key validation bug which results in all user IDs on a given key
being treated with the validity of the most-valid user ID on that
key has been fixed with the release of GnuPG 1.2.2.

We recommend sites using GnuPG upgrade to this new package.

For detailed information about the problem, see this page:
[link moved to references]


Here are the details from the Slackware 9.0 ChangeLog:
+--------------------------+
Tue May 20 20:13:09 PDT 2003
patches/packages/gnupg-1.2.2-i386-1.tgz: Upgraded to gnupg-1.2.2, which fixes a
bug in key validation for keys with more than one user ID. The bug results in
all user IDs on a given key being treated with the validity of the most-valid
user ID on that key.
(* Security fix *)
+--------------------------+

Affected Software/OS:
'GnuPG' package(s) on Slackware 9.0.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

CopyrightCopyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2025 E-Soft Inc. Todos los derechos reservados.