[Secure-testing-team] Bug#752498: gnupg2: DoS due to garbled compressed data packets
Salvatore Bonaccorso
carnil at debian.org
Tue Jun 24 06:42:35 UTC 2014
Source: gnupg2
Version: 2.0.14-2
Severity: important
Tags: security upstream patch fixed-upstream
Hi
For reference it the BTS, gnupg 1.4.17 was released containing a fix for a
denial of service due to garbled compressed data packets[1], which also affects
the 2.x branch[2].
[1] http://lists.gnupg.org/pipermail/gnupg-announce/2014q2/000344.html
[2] http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commitdiff;h=014b2103fcb12f261135e3954f26e9e07b39e342
Regards,
Salvatore
More information about the Secure-testing-team
mailing list