Package name
gnupg
Date
2006-03-13
Advisory ID
MDKSA-2006:055
Affected versions
MNF2.0 i586 , 2006.0 i586 , 10.2 i586 , CS3.0 x86_64 , CS3.0 i586 , 10.2 x86_64 , 2006.0 x86_64

Problem description

Another vulnerability, different from that fixed in MDKSA-2006:043
(CVE-2006-0455), was discovered in gnupg in the handling of signature
files.

This vulnerability is corrected in gnupg 1.4.2.2 which is being
provided with this update.

Updated packages

MNF2.0 i586

 3a998c3c9451bba3ac118df3a8b74955  mnf/2.0/RPMS/gnupg-1.4.2.2-0.1.M20mdk.i586.rpm
 18cfe29d05e64e08c77bab8683517798  mnf/2.0/SRPMS/gnupg-1.4.2.2-0.1.M20mdk.src.rpm

2006.0 i586

 ff09cfa3b8f71b9e5ddf4a7639696b9d  2006.0/RPMS/gnupg-1.4.2.2-0.1.20060mdk.i586.rpm
 22b6b9305f47570652dc276cf8f18401  2006.0/SRPMS/gnupg-1.4.2.2-0.1.20060mdk.src.rpm

10.2 i586

 78bc5edadc4c09cc79301e92e769792b  10.2/RPMS/gnupg-1.4.2.2-0.1.102mdk.i586.rpm
 a64138f15d9d24c9fd342a9d58739629  10.2/SRPMS/gnupg-1.4.2.2-0.1.102mdk.src.rpm

CS3.0 x86_64

 f43a3a505f7874324542f16398243786  x86_64/corporate/3.0/RPMS/gnupg-1.4.2.2-0.1.C30mdk.x86_64.rpm
 54fa6da091d1124b661a9fbc4f21abe1  x86_64/corporate/3.0/SRPMS/gnupg-1.4.2.2-0.1.C30mdk.src.rpm

CS3.0 i586

 cd7fbec4de29eabcc31fdeb90e05f674  corporate/3.0/RPMS/gnupg-1.4.2.2-0.1.C30mdk.i586.rpm
 54fa6da091d1124b661a9fbc4f21abe1  corporate/3.0/SRPMS/gnupg-1.4.2.2-0.1.C30mdk.src.rpm

10.2 x86_64

 921557b980e6831d91f67c1be03ff221  x86_64/10.2/RPMS/gnupg-1.4.2.2-0.1.102mdk.x86_64.rpm
 a64138f15d9d24c9fd342a9d58739629  x86_64/10.2/SRPMS/gnupg-1.4.2.2-0.1.102mdk.src.rpm

2006.0 x86_64

 388c4bca33be3cccb9a44e87b1a34964  x86_64/2006.0/RPMS/gnupg-1.4.2.2-0.1.20060mdk.x86_64.rpm
 22b6b9305f47570652dc276cf8f18401  x86_64/2006.0/SRPMS/gnupg-1.4.2.2-0.1.20060mdk.src.rpm

References