ELSA-2013-1458 - gnupg security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2013-10-24 |
Description
[1.4.5-18]
- fix CVE-2013-4351 gpg treats no-usage-permitted keys as all-usages-permitted
[1.4.5-17]
- fix CVE-2012-6085 GnuPG: read_block() corrupt key input validation
- fix CVE-2013-4242 GnuPG susceptible to Yarom/Falkner side-channel attack
- fix CVE-2013-4402 GnuPG: infinite recursion in the compressed packet parser
[1.4.5-15]
- fix error when decrypting certain files (#510500)
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 5 (i386) | gnupg-1.4.5-18.el5_10.src.rpm | 31f735794add260aba179505dd16412e | ELSA-2014-0016 |
| gnupg-1.4.5-18.el5_10.i386.rpm | 12df6248e2ae42e8c351b883891902ad | ELSA-2014-0016 |
|
| Oracle Linux 5 (ia64) | gnupg-1.4.5-18.el5_10.src.rpm | 31f735794add260aba179505dd16412e | ELSA-2014-0016 |
| gnupg-1.4.5-18.el5_10.ia64.rpm | f600665f0886a2c8b05156e8dfcc3cfa | ELSA-2014-0016 |
|
| Oracle Linux 5 (x86_64) | gnupg-1.4.5-18.el5_10.src.rpm | 31f735794add260aba179505dd16412e | ELSA-2014-0016 |
| gnupg-1.4.5-18.el5_10.x86_64.rpm | 6451e7b1ebaf06e40626012b61ca9e4c | ELSA-2014-0016 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
