Ubuntu Update For Gpgme1.0 USN-2307-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Tom&#225 &#353 Trnka discovered that GPGME incorrectly handled certain certificate line lengths. An attacker could use this issue to cause applications using GPGME to crash, resulting in a denial of service, or possibly execute arbitrary code.

Affected

gpgme1.0 on Ubuntu 14.04 LTS , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2014-3564

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for bind9 vulnerability USN-491-1
Ubuntu Update for clamav vulnerability USN-684-1
Ubuntu Update for apache2 USN-1903-1
Ubuntu Update for bzip2 vulnerability USN-590-1
Ubuntu Update for clamav USN-1179-1

Ubuntu Update for gpgme1.0 USN-2307-1

Take action and discover your vulnerabilities