close
Pourquoi s'enregistré ... Pour bénéficié de plein d'avantage, plus l'accès à des partis du site qui ne sont accessible qu'aux membres. L'inscription n'est pas une obligation.

       
Mot de passe oublié?    Identifiant oublié?    Créer un compte

Si toute fois vous avez envies de vous inscrire, donner une adresse e-mail valide, car il vous seras envoyer un mail de confirmation d'ouverture de compte. Merci.
Top Panel
Login
Top Panel

Pin-Up

Recherche Google

Publicité

[Security Announce] MDKSA-2006:141 - Updated gnupg packages fix vulnerability PDF Imprimer Envoyer
(0 Votes)
Écrit par Administrator   
Mardi, 15 Août 2006 10:40

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2006:141
http://www.mandriva.com/security/
_______________________________________________________________________

Package : gnupg
Date : August 14, 2006
Affected: 2006.0, Corporate 3.0, Multi Network Firewall 2.0
_______________________________________________________________________

Problem Description:

An integer overflow vulnerability was discovered in gnupg where an attacker could create a carefully-crafted message packet with a large length that could cause gnupg to crash or possibly overwrite memory when opened.

Updated packages have been patched to correct this issue.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3746
_______________________________________________________________________

Updated Packages:

Mandriva Linux 2006.0:
dad4f89b0659db5ce5f0ea5346937f84 2006.0/RPMS/gnupg-1.4.2.2-0.3.20060mdk.i586.rpm
235e259f35fc3e064da19eeafb1928bb 2006.0/RPMS/gnupg2-1.9.16-4.2.20060mdk.i586.rpm
4868f4809119c3eb251c750082eafb0c 2006.0/SRPMS/gnupg-1.4.2.2-0.3.20060mdk.src.rpm
e200d2b1d9fd36bf87a2a115921671e1 2006.0/SRPMS/gnupg2-1.9.16-4.2.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
72633103b324b4a6304849b9adde6dee x86_64/2006.0/RPMS/gnupg-1.4.2.2-0.3.20060mdk.x86_64.rpm
1080c501a35fb063e45fffca91d1c577 x86_64/2006.0/RPMS/gnupg2-1.9.16-4.2.20060mdk.x86_64.rpm
4868f4809119c3eb251c750082eafb0c x86_64/2006.0/SRPMS/gnupg-1.4.2.2-0.3.20060mdk.src.rpm
e200d2b1d9fd36bf87a2a115921671e1 x86_64/2006.0/SRPMS/gnupg2-1.9.16-4.2.20060mdk.src.rpm

Corporate 3.0:
48a68f90d599061b4605580c6dfb87c5 corporate/3.0/RPMS/gnupg-1.4.2.2-0.3.C30mdk.i586.rpm
4948bb972e446f136d8f0c81045a68d6 corporate/3.0/SRPMS/gnupg-1.4.2.2-0.3.C30mdk.src.rpm

Corporate 3.0/X86_64:
ca85cec5ae88d2a6aa0216aed0f38ffd x86_64/corporate/3.0/RPMS/gnupg-1.4.2.2-0.3.C30mdk.x86_64.rpm
4948bb972e446f136d8f0c81045a68d6 x86_64/corporate/3.0/SRPMS/gnupg-1.4.2.2-0.3.C30mdk.src.rpm

Multi Network Firewall 2.0:
0d17b96d0b992d95a74c9a215088425b mnf/2.0/RPMS/gnupg-1.4.2.2-0.4.M20mdk.i586.rpm
6f752ebe3c8094f11f6bf2d3b7f3cb2e mnf/2.0/SRPMS/gnupg-1.4.2.2-0.4.M20mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________
Submit to Delicious Submit to Facebook Submit to Google Bookmarks Submit to Technorati Submit to Twitter Submit to LinkedIn

 

This content has been locked. You can no longer post any comment.

maps.amung.us

www.geo-loc.com

Publicité

Browse the web faster with Firefox