Secunia - Stay Secure
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


SUSE update for gnupg Advisory Available in Danish  Advisory Available in German 

Secunia Advisory: SA23284  
Release Date: 2006-12-13

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch

OS:SUSE Linux 10
SUSE Linux 10.1
SUSE Linux 9.3
SuSE Linux Desktop 1.x
SUSE Linux Enterprise Server 10
SuSE Linux Enterprise Server 8
SuSE Linux Openexchange Server 4.x
SuSE Linux Standard Server 8
UnitedLinux 1.0

Software:Novell Open Enterprise Server 1.x

CVE reference:CVE-2006-6169 (Secunia mirror)
CVE-2006-6235 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
SUSE has issued an update for gnupg. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.

For more information:
SA23094
SA23245

Solution:
Apply updated packages.

x86 Platform:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/gpg-1.4.5-24.2.i586.rpm
0032014cef28fd9d575ca9d56886dc9a
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/gpg2-1.9.22-20.2.i586.rpm
8cdf17f4928497c703df0986012bd924

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/gpg-1.4.2-23.12.i586.rpm
714ad111277495f85fb4d75c07a436e1
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/gpg2-1.9.18-17.13.i586.rpm
df328ffaa0b0fa34e70932dd8eafd399

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/gpg-1.4.2-5.11.i586.rpm
bbdac2ac9cf42f2e0744f93c7a27bd64
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/gpg2-1.9.18-2.11.i586.rpm
6b96bf0aa835b5c5a6d38f3fe9baa020

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/gpg-1.4.0-4.11.i586.rpm
1f188d6e98593753dbf0115758c60700
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/gpg2-1.9.14-6.13.i586.rpm
493bb161ab9a0ee7e8b687da49fc874f

Power PC Platform:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/gpg-1.4.5-24.2.ppc.rpm
8ba71e773c0ed4bfad10017d4f0ad769
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/gpg2-1.9.22-20.2.ppc.rpm
04e4aa189832a2834ac843d3d216b560

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/gpg-1.4.2-23.12.ppc.rpm
87d3e2efab5fda6d0c0fb0228e8089eb
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/gpg2-1.9.18-17.13.ppc.rpm
9ecd1af3d67515388dc5f9c797d33fde

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/gpg-1.4.2-5.11.ppc.rpm
36dd086f17d69a2344387249f4f59828
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/gpg2-1.9.18-2.11.ppc.rpm
0b0a3f42511f722f1113ceb2ddb1fe42

x86-64 Platform:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/gpg-1.4.5-24.2.x86_64.rpm
178ec43c6b057b055e64fd8ce3b370f3
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/gpg2-1.9.22-20.2.x86_64.rpm
a480e34bc72c13902b060774a8c93614

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/gpg-1.4.2-23.12.x86_64.rpm
424104d7e79aa13997a9cd5bf48daaed
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/gpg2-1.9.18-17.13.x86_64.rpm
f9813d58d65585d3216ce4a514288e60

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda.../rpm/x86_64/gpg-1.4.2-5.11.x86_64.rpm
542621ad20461324061e95d757f062a9
ftp://ftp.suse.com/pub/suse/i386/upda...pm/x86_64/gpg2-1.9.18-2.11.x86_64.rpm
6e40568843721500e6e7a01e49478be5

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/gpg-1.4.0-4.11.x86_64.rpm
d0857cd1ef3d71961e866f56c565b32d
ftp://ftp.suse.com/pub/suse/i386/upda...pm/x86_64/gpg2-1.9.14-6.13.x86_64.rpm
20eb29a34cd71e5d1fa86bb53522a5ca

Sources:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/gpg-1.4.5-24.2.src.rpm
8b319a4138cc1ff4304dc45c369936c6
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/gpg2-1.9.22-20.2.src.rpm
6ea5c120e635118233a97c5877ca10c0

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/gpg-1.4.2-23.12.src.rpm
551331ff3994d1e0a6a1c893f9d99c84
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/gpg2-1.9.18-17.13.src.rpm
4dcf00273942790ccc8945f1badb441d

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/gpg-1.4.2-5.11.src.rpm
47425c0af8df3d11100bc938db0d9141
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/gpg2-1.9.18-2.11.src.rpm
d76d488c78aa5c047f9d0d3a72bb1509

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/gpg-1.4.0-4.11.src.rpm
86c9afba71507f0d4f3f7e88fa599ea1
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/gpg2-1.9.14-6.13.src.rpm
a911124ed914970d7c458caf03ddd709

UnitedLinux 1.0
SuSE Linux Openexchange Server 4
Open Enterprise Server
Novell Linux POS 9
SuSE Linux Enterprise Server 8
SuSE Linux Standard Server 8
SuSE Linux School Server
SUSE LINUX Retail Solution 8
SuSE Linux Desktop 1.0
SUSE SLES 9
http://support.novell.com/techcenter/psdb/440643b5b7f99c513f043f911ca9d906.html

Novell Linux Desktop 9
SUSE SLES 10
SUSE SLED 10
http://support.novell.com/techcenter/psdb/440643b5b7f99c513f043f911ca9d906.html
http://support.novell.com/techcenter/psdb/d29d6e06422f5a6d9e87580b666bbb83.html

Original Advisory:
http://lists.suse.com/archive/suse-security-announce/2006-Dec/0004.html

Other References:
SA23094:
http://secunia.com/advisories/23094/

SA23245:
http://secunia.com/advisories/23245/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

430 Related Secunia Security Advisories, displaying 10

1. SUSE update for Sun Java
2. SUSE update for IBM Java
3. SUSE update for IBMJava2-JRE and IBMJava2-SDK
4. SUSE update for python
5. SUSE update for postfix
6. SUSE update for net-snmp
7. SUSE update for MozillaFirefox
8. SUSE Update for Multiple Packages
9. SUSE update for MozillaFirefox
10. SUSE update for bind

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
HP TCP/IP Services for OpenVMS Finger Format String Vulnerability
2.
Novell eDirectory Multiple Vulnerabilities
3.
Adium MSN SLP Message Integer Overflow Vulnerabilities
4.
dotProject SQL Injection and Cross-Site Scripting
5.
Caudium "configvar" Insecure Temporary Files
6.
Red Hat update for libtiff
7.
Blogn Cross-Site Scripting and Cross-Site Request Forgery
8.
IBM WebSphere Application Server for z/OS HTTP Server mod_proxy_ftp Vulnerability
9.
phpMyRealty "price_max" SQL Injection Vulnerability
10.
Ultra Office ActiveX Control Multiple Vulnerabilities





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia