ID CVE-2018-12020
Summary mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represent an original filename that contains line feed characters in conjunction with GOODSIG or VALIDSIG status codes.
References
Vulnerable Configurations
  • cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.0.0:-:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.0.0:-:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.10:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.11:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.11:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.12:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.12:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.13:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.13:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.14:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.14:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.15:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.15:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.16:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.16:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.17:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.17:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.18:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.18:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.2.19:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.2.19:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.3.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.3.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.3.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:0.9.11:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:0.9.11:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.4:-:win32:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.4:-:win32:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.5:-:win32:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.5:-:win32:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.1.90:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.1.90:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.1.91:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.1.91:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.1.92:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.1.92:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.1:windows:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.1:windows:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.90:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.90:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.91:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.91:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.92:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.92:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.3.93:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.3.93:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.10:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.11:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.11:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.12:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.12:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.13:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.13:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.14:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.14:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.15:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.15:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.16:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.16:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.17:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.17:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.18:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.18:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.19:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.19:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.4.23:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.4.23:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.11:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.11:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.12:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.12:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.13:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.13:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.14:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.14:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.15:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.15:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.16:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.16:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.17:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.17:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.18:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.18:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.19:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.19:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.20:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.20:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.21:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.21:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.22:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.22:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.23:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.23:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.90:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.90:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.91:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.91:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.92:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.92:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.93:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.93:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.94:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.94:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:1.9.95:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:1.9.95:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.10:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.11:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.11:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.12:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.12:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.13:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.13:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.14:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.14:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.15:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.15:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.16:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.16:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.17:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.17:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.18:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.18:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.19:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.19:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.20:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.20:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.21:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.21:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.22:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.22:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.23:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.23:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.24:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.24:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.25:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.25:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.26:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.26:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.27:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.27:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.0.28:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.0.28:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.0:beta1:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.0:beta1:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.8:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.10:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.11:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.11:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.12:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.12:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.13:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.13:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.14:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.14:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.15:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.15:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.16:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.16:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.17:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.17:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.18:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.18:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.19:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.19:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.20:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.20:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.21:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.21:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.1.22:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.1.22:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnupg:gnupg:2.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnupg:gnupg:2.2.7:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE CWE-706
CAPEC
  • Leveraging/Manipulating Configuration File Search Paths
    This attack loads a malicious resource into a program's standard path used to bootstrap and/or provide contextual information for a program like a path variable or classpath. J2EE applications and other component based applications that are built from multiple binaries can have very long list of dependencies to execute. If one of these libraries and/or references is controllable by the attacker then application controls can be circumvented by the attacker. A standard UNIX path looks similar to this If the attacker modifies the path variable to point to a locale that includes malicious resources then the user unwittingly can execute commands on the attackers' behalf: This is a form of usurping control of the program and the attack can be done on the classpath, database resources, or any other resources built from compound parts. At runtime detection and blocking of this attack is nearly impossible, because the configuration allows execution.
  • DLL Search Order Hijacking
    The attacker exploits the functionality of the Windows DLL loader where the process loading the DLL searches for the DLL to be loaded first in the same directory in which the process binary resides and then in other directories (e.g., System32). Exploitation of this preferential search order can allow an attacker to make the loading process load the attackers' rogue DLL rather than the legitimate DLL. For instance, an attacker with access to the file system may place a malicious ntshrui.dll in the C:\Windows directory. This DLL normally resides in the System32 folder. Process explorer.exe which also resides in C:\Windows, upon trying to load the ntshrui.dll from the System32 folder will actually load the DLL supplied by the attacker simply because of the preferential search order. Since the attacker has placed its malicious ntshrui.dll in the same directory as the loading explorer.exe process, the DLL supplied by the attacker will be found first and thus loaded in lieu of the legitimate DLL. Since explorer.exe is loaded during the boot cycle, the attackers' malware is guaranteed to execute. This attack can be leveraged with many different DLLs and with many different loading processes. No forensic trails are left in the system's registry or file system that an incorrect DLL had been loaded.
  • Passing Local Filenames to Functions That Expect a URL
    This attack relies on client side code to access local files and resources instead of URLs. When the client browser is expecting a URL string, but instead receives a request for a local file, that execution is likely to occur in the browser process space with the browser's authority to local files. The attacker can send the results of this request to the local files out to a site that they control. This attack may be used to steal sensitive authentication data (either local or remote), or to gain system profile information to launch further attacks.
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:N
redhat via4
advisories
  • bugzilla
    id 1589620
    title CVE-2018-12020 gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification
    oval
    AND
    • OR
      • comment Red Hat Enterprise Linux 6 Client is installed
        oval oval:com.redhat.rhba:tst:20111656001
      • comment Red Hat Enterprise Linux 6 Server is installed
        oval oval:com.redhat.rhba:tst:20111656002
      • comment Red Hat Enterprise Linux 6 Workstation is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • comment Red Hat Enterprise Linux 6 ComputeNode is installed
        oval oval:com.redhat.rhba:tst:20111656004
    • OR
      • AND
        • comment gnupg2 is earlier than 0:2.0.14-9.el6_10
          oval oval:com.redhat.rhsa:tst:20182180007
        • comment gnupg2 is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20131459006
      • AND
        • comment gnupg2-smime is earlier than 0:2.0.14-9.el6_10
          oval oval:com.redhat.rhsa:tst:20182180005
        • comment gnupg2-smime is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20131459008
    rhsa
    id RHSA-2018:2180
    released 2018-07-11
    severity Important
    title RHSA-2018:2180: gnupg2 security update (Important)
  • bugzilla
    id 1589620
    title CVE-2018-12020 gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification
    oval
    AND
    • OR
      • comment Red Hat Enterprise Linux 7 Client is installed
        oval oval:com.redhat.rhba:tst:20150364001
      • comment Red Hat Enterprise Linux 7 Server is installed
        oval oval:com.redhat.rhba:tst:20150364002
      • comment Red Hat Enterprise Linux 7 Workstation is installed
        oval oval:com.redhat.rhba:tst:20150364003
      • comment Red Hat Enterprise Linux 7 ComputeNode is installed
        oval oval:com.redhat.rhba:tst:20150364004
    • OR
      • AND
        • comment gnupg2 is earlier than 0:2.0.22-5.el7_5
          oval oval:com.redhat.rhsa:tst:20182181007
        • comment gnupg2 is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20131459006
      • AND
        • comment gnupg2-smime is earlier than 0:2.0.22-5.el7_5
          oval oval:com.redhat.rhsa:tst:20182181005
        • comment gnupg2-smime is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20131459008
    rhsa
    id RHSA-2018:2181
    released 2018-07-11
    severity Important
    title RHSA-2018:2181: gnupg2 security update (Important)
rpms
  • gnupg2-0:2.0.14-9.el6_10
  • gnupg2-smime-0:2.0.14-9.el6_10
  • gnupg2-0:2.0.22-5.el7_5
  • gnupg2-smime-0:2.0.22-5.el7_5
refmap via4
bid 104450
confirm https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
debian
  • DSA-4222
  • DSA-4223
  • DSA-4224
fulldisc 20190430 OpenPGP and S/MIME signature forgery attacks in multiple email clients
misc
mlist [oss-security] 20190430 Spoofing OpenPGP and S/MIME Signatures in Emails (multiple clients)
sectrack 1041051
ubuntu
  • USN-3675-1
  • USN-3675-2
  • USN-3675-3
  • USN-3964-1
Last major update 03-10-2019 - 00:03
Published 08-06-2018 - 21:29
Back to Top