|
|
|
|
Ubuntu update for gnupg, gnupg2 and libgpgme
|
|
Secunia Advisory:
|
SA24420
|
|
|
Release Date:
|
2007-03-08
|
|
Last Update:
|
2007-03-14
|
|
Popularity:
|
4,219 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Security Bypass
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Ubuntu Linux 5.10
Ubuntu Linux 6.06
Ubuntu Linux 6.10
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
| | CVE reference: | CVE-2007-1263
|
|
Description:
Ubuntu has issued an update for gnupg, gnupg2 and libgpgme. This fixes a vulnerability, which potentially can be exploited by malicious people to bypass certain security restrictions when applications use GnuPG in an insecure manner.
For more information:
SA24412
Solution:
Apply updated packages.
-- Ubuntu 5.10 --
Source archives:
http://security.ubuntu.com/ubuntu/poo.../gnupg/gnupg_1.4.1-1ubuntu1.7.diff.gz
Size/MD5: 25425 95c70d62c7e93b0a294250f1ef8bffbc
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.7.dsc
Size/MD5: 684 80528a24f59f9dc0063a6640d49d2879
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1.orig.tar.gz
Size/MD5: 4059170 1cc77c6943baaa711222e954bbd785e5
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/poo...nupg/gnupg_1.4.1-1ubuntu1.7_amd64.deb
Size/MD5: 1136974 ab221f5e755ffcb88f9db8be00d2b78c
http://security.ubuntu.com/ubuntu/poo...gpgv-udeb_1.4.1-1ubuntu1.7_amd64.udeb
Size/MD5: 152330 4babe71c8a3f93bcc1169dfc60e47b89
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/poo...gnupg/gnupg_1.4.1-1ubuntu1.7_i386.deb
Size/MD5: 1045290 eeb54cf2e3b201b2c813507b537dae81
http://security.ubuntu.com/ubuntu/poo.../gpgv-udeb_1.4.1-1ubuntu1.7_i386.udeb
Size/MD5: 130812 86c1ee88f32bf5e4a35144d22e42024b
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/poo...pg/gnupg_1.4.1-1ubuntu1.7_powerpc.deb
Size/MD5: 1120350 8c0a11b1b29093e2a6fc198d93bee8f0
http://security.ubuntu.com/ubuntu/poo...gv-udeb_1.4.1-1ubuntu1.7_powerpc.udeb
Size/MD5: 140330 8bf6e199e1ed859d65f015f8f5a6fe05
sparc architecture (Sun SPARC/UltraSPARC)
http://security.ubuntu.com/ubuntu/poo...nupg/gnupg_1.4.1-1ubuntu1.7_sparc.deb
Size/MD5: 1065120 25a911b1644da3be8880221f002f8563
http://security.ubuntu.com/ubuntu/poo...gpgv-udeb_1.4.1-1ubuntu1.7_sparc.udeb
Size/MD5: 139740 80e9a3c9748f918745c5417ea64ce06a
-- Ubuntu 6.06 LTS --
Source archives:
http://security.ubuntu.com/ubuntu/poo...nupg/gnupg_1.4.2.2-1ubuntu2.5.diff.gz
Size/MD5: 24318 aa78ecc4d9dd51b8d4084e152093e6be
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.5.dsc
Size/MD5: 690 460f793de7cea304ac0e038bf4e8f348
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2.orig.tar.gz
Size/MD5: 4222685 50d8fd9c5715ff78b7db0e5f20d08550
http://security.ubuntu.com/ubuntu/poo...1.0/gpgme1.0_1.1.0-1ubuntu0.1.diff.gz
Size/MD5: 35741 47d6ee190ee0522b45b96dfea1aec369
http://security.ubuntu.com/ubuntu/poo...pgme1.0/gpgme1.0_1.1.0-1ubuntu0.1.dsc
Size/MD5: 659 536b60523f53fe45e9a715fee633fb8e
http://security.ubuntu.com/ubuntu/poo...g/gpgme1.0/gpgme1.0_1.1.0.orig.tar.gz
Size/MD5: 862122 dc180e1c2b3b13cf3b16b9586e8509ac
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/poo...pg/gnupg_1.4.2.2-1ubuntu2.5_amd64.deb
Size/MD5: 1066892 bebab8ec7afe738b426e080f10af9c37
http://security.ubuntu.com/ubuntu/poo...gv-udeb_1.4.2.2-1ubuntu2.5_amd64.udeb
Size/MD5: 140414 8b9f2ca68439062984c4314ba5c0e2d8
http://security.ubuntu.com/ubuntu/poo...pgme11-dev_1.1.0-1ubuntu0.1_amd64.deb
Size/MD5: 343394 ca1cd44964639c3b1ab517d71f02be7c
http://security.ubuntu.com/ubuntu/poo...libgpgme11_1.1.0-1ubuntu0.1_amd64.deb
Size/MD5: 185096 686c695bf758bdb35eb0277596b5d967
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/poo...upg/gnupg_1.4.2.2-1ubuntu2.5_i386.deb
Size/MD5: 981952 bd95db0369ba517b3f29ec132676fcc5
http://security.ubuntu.com/ubuntu/poo...pgv-udeb_1.4.2.2-1ubuntu2.5_i386.udeb
Size/MD5: 120392 188d1f1cb3ec385c444e623d9efcadde
http://security.ubuntu.com/ubuntu/poo...gpgme11-dev_1.1.0-1ubuntu0.1_i386.deb
Size/MD5: 316162 787bcf93b93d4d846c4278caee3f298a
http://security.ubuntu.com/ubuntu/poo.../libgpgme11_1.1.0-1ubuntu0.1_i386.deb
Size/MD5: 164356 a3e2c02f67687ed53c80023159a08513
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/poo.../gnupg_1.4.2.2-1ubuntu2.5_powerpc.deb
Size/MD5: 1054420 0da3379c332cb3786933861ec66c9478
http://security.ubuntu.com/ubuntu/poo...-udeb_1.4.2.2-1ubuntu2.5_powerpc.udeb
Size/MD5: 130262 c528d3f517f94a50ecd06a10b5767c84
http://security.ubuntu.com/ubuntu/poo...me11-dev_1.1.0-1ubuntu0.1_powerpc.deb
Size/MD5: 329614 079a0ad9f7775de82b21bc8cd8b7e96b
http://security.ubuntu.com/ubuntu/poo...bgpgme11_1.1.0-1ubuntu0.1_powerpc.deb
Size/MD5: 178434 1430154f3bda638d607d3d00c9da736c
sparc architecture (Sun SPARC/UltraSPARC)
http://security.ubuntu.com/ubuntu/poo...pg/gnupg_1.4.2.2-1ubuntu2.5_sparc.deb
Size/MD5: 994884 159220ec1a5c667a073e13e63380fd49
http://security.ubuntu.com/ubuntu/poo...gv-udeb_1.4.2.2-1ubuntu2.5_sparc.udeb
Size/MD5: 127548 755511f26f78dd7744434601d684404b
http://security.ubuntu.com/ubuntu/poo...pgme11-dev_1.1.0-1ubuntu0.1_sparc.deb
Size/MD5: 316166 687a5a1e91979f26cf0453315e10aa85
http://security.ubuntu.com/ubuntu/poo...libgpgme11_1.1.0-1ubuntu0.1_sparc.deb
Size/MD5: 169754 90558aac05b3f71c98dcf5e089dfa37b
-- Ubuntu 6.10 --
Source archives:
http://security.ubuntu.com/ubuntu/poo.../gnupg/gnupg_1.4.3-2ubuntu3.3.diff.gz
Size/MD5: 29804 2f3b7d22a447212c871a1ca6ff754df7
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.3.dsc
Size/MD5: 697 54eb12ebf5f4426abe78eb286c32ec35
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3.orig.tar.gz
Size/MD5: 4320394 fcdf572a33dd037653707b128dd150a7
http://security.ubuntu.com/ubuntu/poo...upg2/gnupg2_1.9.21-0ubuntu5.3.diff.gz
Size/MD5: 40536 57bef9fd8e37b8d1f0c09c7cb6a1b4b6
http://security.ubuntu.com/ubuntu/poo...g/gnupg2/gnupg2_1.9.21-0ubuntu5.3.dsc
Size/MD5: 839 3830cb1f96959bebba4560bf56cfb865
http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gnupg2_1.9.21.orig.tar.gz
Size/MD5: 2290952 5a609db8ecc661fb299c0dccd84ad503
http://security.ubuntu.com/ubuntu/poo...1.0/gpgme1.0_1.1.2-2ubuntu0.1.diff.gz
Size/MD5: 582785 ffc28a1ddf242c1434054c611b3e56e7
http://security.ubuntu.com/ubuntu/poo...pgme1.0/gpgme1.0_1.1.2-2ubuntu0.1.dsc
Size/MD5: 744 59ff64cec62d3259528e4dcb314115b0
http://security.ubuntu.com/ubuntu/poo...g/gpgme1.0/gpgme1.0_1.1.2.orig.tar.gz
Size/MD5: 881432 c712ca39c3553573f15cd01e6edb8b68
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/poo...nupg-udeb_1.4.3-2ubuntu3.3_amd64.udeb
Size/MD5: 380186 ac0b24986f64b7be4da102509f86ea27
http://security.ubuntu.com/ubuntu/poo...nupg/gnupg_1.4.3-2ubuntu3.3_amd64.deb
Size/MD5: 1112634 339bb8b52507096e2a1f9cb75864629f
http://security.ubuntu.com/ubuntu/poo...gpgv-udeb_1.4.3-2ubuntu3.3_amd64.udeb
Size/MD5: 142772 a460f38f4669944e3c8cdbff531b4a41
http://security.ubuntu.com/ubuntu/poo...upg-agent_1.9.21-0ubuntu5.3_amd64.deb
Size/MD5: 193872 094402a2b5d64a699a9b8da5f47891f1
http://security.ubuntu.com/ubuntu/poo...g2/gnupg2_1.9.21-0ubuntu5.3_amd64.deb
Size/MD5: 787500 8198d070a8589a47f9b0c6893b101d89
http://security.ubuntu.com/ubuntu/poo...pg2/gpgsm_1.9.21-0ubuntu5.3_amd64.deb
Size/MD5: 333136 deb90b54b5d8ff98e2f8f3f8a96c4896
http://security.ubuntu.com/ubuntu/poo...pgme11-dev_1.1.2-2ubuntu0.1_amd64.deb
Size/MD5: 349736 8b6ba64e232718d85b20e01152d5e0b6
http://security.ubuntu.com/ubuntu/poo...libgpgme11_1.1.2-2ubuntu0.1_amd64.deb
Size/MD5: 188434 7f594bfa7c5a223fbc48dcd5063239f4
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/poo...gnupg-udeb_1.4.3-2ubuntu3.3_i386.udeb
Size/MD5: 357730 08dee030fef6b31ba21b92d56b134cad
http://security.ubuntu.com/ubuntu/poo...gnupg/gnupg_1.4.3-2ubuntu3.3_i386.deb
Size/MD5: 1056104 826246d40bdd92c0b04a0c0d385e4a64
http://security.ubuntu.com/ubuntu/poo.../gpgv-udeb_1.4.3-2ubuntu3.3_i386.udeb
Size/MD5: 129176 8d173c26de67072948c7f34dfceb75ae
http://security.ubuntu.com/ubuntu/poo...nupg-agent_1.9.21-0ubuntu5.3_i386.deb
Size/MD5: 176266 4e191490d03c78bb16ae76ffdcc1f4ce
http://security.ubuntu.com/ubuntu/poo...pg2/gnupg2_1.9.21-0ubuntu5.3_i386.deb
Size/MD5: 738282 f26ac977c08ecc691c5428367b4b1196
http://security.ubuntu.com/ubuntu/poo...upg2/gpgsm_1.9.21-0ubuntu5.3_i386.deb
Size/MD5: 304926 124b1f54edc4902ddc9656fb6d56e2eb
http://security.ubuntu.com/ubuntu/poo...gpgme11-dev_1.1.2-2ubuntu0.1_i386.deb
Size/MD5: 329932 fc9e1af3ae706db0bc106607f6f8c0d3
http://security.ubuntu.com/ubuntu/poo.../libgpgme11_1.1.2-2ubuntu0.1_i386.deb
Size/MD5: 174936 c1f8f21e0adf999ea3098b3aaab4882e
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/poo...pg-udeb_1.4.3-2ubuntu3.3_powerpc.udeb
Size/MD5: 372730 c3dd8be3260d14e82a4af95f37c6616d
http://security.ubuntu.com/ubuntu/poo...pg/gnupg_1.4.3-2ubuntu3.3_powerpc.deb
Size/MD5: 1107684 1a8a6be788ab4afd0c33483f5faa6a1f
http://security.ubuntu.com/ubuntu/poo...gv-udeb_1.4.3-2ubuntu3.3_powerpc.udeb
Size/MD5: 136440 ee71f2b32e7e085488e134ba68f89122
http://security.ubuntu.com/ubuntu/poo...g-agent_1.9.21-0ubuntu5.3_powerpc.deb
Size/MD5: 190746 2da9f0306a14651ece00b85d41700391
http://security.ubuntu.com/ubuntu/poo.../gnupg2_1.9.21-0ubuntu5.3_powerpc.deb
Size/MD5: 774174 fa48b523bc15d9e3590ff0739bceafb4
http://security.ubuntu.com/ubuntu/poo...2/gpgsm_1.9.21-0ubuntu5.3_powerpc.deb
Size/MD5: 324472 ef82785a6bdaea9009669d3024f6b0b4
http://security.ubuntu.com/ubuntu/poo...me11-dev_1.1.2-2ubuntu0.1_powerpc.deb
Size/MD5: 335252 ec105374c75dccf66afcfe154d34387f
http://security.ubuntu.com/ubuntu/poo...bgpgme11_1.1.2-2ubuntu0.1_powerpc.deb
Size/MD5: 182786 915534115d51065f3cfebc2b02b637e7
sparc architecture (Sun SPARC/UltraSPARC)
http://security.ubuntu.com/ubuntu/poo...nupg-udeb_1.4.3-2ubuntu3.3_sparc.udeb
Size/MD5: 366290 90570b1dafeb0a01862c5768579564a3
http://security.ubuntu.com/ubuntu/poo...nupg/gnupg_1.4.3-2ubuntu3.3_sparc.deb
Size/MD5: 1042784 e8b19dfe7705afbde9c54b223e44dcba
http://security.ubuntu.com/ubuntu/poo...gpgv-udeb_1.4.3-2ubuntu3.3_sparc.udeb
Size/MD5: 132868 edc923da480a84aa4d060c8d7be58be2
http://security.ubuntu.com/ubuntu/poo...upg-agent_1.9.21-0ubuntu5.3_sparc.deb
Size/MD5: 174274 73230ada924427a5d5fc230b7d625b64
http://security.ubuntu.com/ubuntu/poo...g2/gnupg2_1.9.21-0ubuntu5.3_sparc.deb
Size/MD5: 726564 3b0f3eb59acd4157913885ba1461567e
http://security.ubuntu.com/ubuntu/poo...pg2/gpgsm_1.9.21-0ubuntu5.3_sparc.deb
Size/MD5: 297776 8c76049329431405229dce046656b6b6
http://security.ubuntu.com/ubuntu/poo...pgme11-dev_1.1.2-2ubuntu0.1_sparc.deb
Size/MD5: 323808 8668135508773a2f41fde93153d786ff
http://security.ubuntu.com/ubuntu/poo...libgpgme11_1.1.2-2ubuntu0.1_sparc.deb
Size/MD5: 174140 9d305501f27c38e624b95788f6945736
Changelog:
2007-03-14: Updated advisory with information about gnupg2 and libgpgme.
Original Advisory:
http://www.ubuntu.com/usn/usn-432-1
http://www.ubuntu.com/usn/usn-432-2
Other References:
SA24412:
http://secunia.com/advisories/24412/
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
13th Oct, 2008
|
New advisories:
|
19 |
|
New vulnerabilities:
|
31 |
|
Updated advisories:
|
28 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 Solutions | More...
|
|
|
|
Send Feedback to Secunia
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
|
