Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Errata Announcements for Oracle Linux <el-errata <at> oss.oracle.com>
Subject: ELSA-2013-1459 Moderate: Oracle Linux 5 gnupg2 security update
Newsgroups: gmane.linux.oracle.el-errata
Date: Friday 25th October 2013 02:45:22 UTC (over 2 years ago)
Oracle Linux Security Advisory ELSA-2013-1459

https://rhn.redhat.com/errata/RHSA-2013-1459.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
gnupg2-2.0.10-6.el5_10.i386.rpm

x86_64:
gnupg2-2.0.10-6.el5_10.x86_64.rpm

ia64:
gnupg2-2.0.10-6.el5_10.ia64.rpm


SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/gnupg2-2.0.10-6.el5_10.src.rpm



Description of changes:

[2.0.10-6]
- fix CVE-2013-4351 gpg treats no-usage-permitted keys as 
all-usages-permitted

[2.0.10-5]
- fix CVE-2012-6085 GnuPG: read_block() corrupt key input validation
- fix CVE-2013-4402 GnuPG: infinite recursion in the compressed packet 
parser

[2.0.10-4]
- fix use after free when importing certain X509 certificates
   CVE-2010-2547 (#618156)
 
CD: 4ms