[Technik] [SECURITY] [DSA 1266-1] New gnupg packages fix
signature forgery
Noèl Köthe
noel at debian.org
Wed Mar 14 21:05:08 CET 2007
Am Dienstag, den 13.03.2007, 23:55 +0100 schrieb Moritz Muehlenhoff:
> Debian Security Advisory DSA 1266-1 security at debian.org
> http://www.debian.org/security/ Moritz Muehlenhoff
> March 13th, 2007 http://www.debian.org/security/faq
>
> Package : gnupg
> Vulnerability : several
> Problem-Type : local(remote)
> Debian-specific: no
> CVE ID : CVE-2007-1263
> Debian Bug : 413922 414170
gnupg auf h01, h02, h03, h04, acoma, cupa und wasco aktualisiert.
> For the stable distribution (sarge) these problems have been fixed in
> version 1.4.1-1.sarge7.
changelog:
gnupg (1.4.1-1.sarge7) stable-security; urgency=high
* Non-maintainer upload by the Security Team
* Backported patch from upstream 1.4.7 for CVE-2007-1263.
-- Moritz Muehlenhoff <jmm at debian.org> Mon, 12 Mar 2007 18:48:15 +0000
--
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : /archiv/technik/attachments/20070314/1bee1153/attachment.pgp
More information about the Technik
mailing list