Secunia - Stay Secure
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


Debian update for gnupg Advisory Available in Danish 

Secunia Advisory: SA21333  
Release Date: 2006-08-04

Critical:
Moderately critical
Impact: DoS
Where: From remote
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.1
Debian GNU/Linux unstable alias sid


CVE reference:CVE-2006-3746 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
Debian has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

For more information:
SA21297

Solution:
Apply updated packages.

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge5.dsc
Size/MD5 checksum: 680 3ca752cd4daad97be9a5c39c8946529f
http://security.debian.org/pool/updat.../g/gnupg/gnupg_1.4.1-1.sarge5.diff.gz
Size/MD5 checksum: 20602 60b0f10cc733d5db834cc938ea64c9c6
http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1.orig.tar.gz
Size/MD5 checksum: 4059170 1cc77c6943baaa711222e954bbd785e5

Alpha architecture:

http://security.debian.org/pool/updat.../gnupg/gnupg_1.4.1-1.sarge5_alpha.deb
Size/MD5 checksum: 2155966 7247aeac9ee92201dd653d72250b6635

AMD64 architecture:

http://security.debian.org/pool/updat.../gnupg/gnupg_1.4.1-1.sarge5_amd64.deb
Size/MD5 checksum: 1963522 090bc4edbbcff55a42e0f0e150bebe1c

ARM architecture:

http://security.debian.org/pool/updat.../g/gnupg/gnupg_1.4.1-1.sarge5_arm.deb
Size/MD5 checksum: 1899504 3d5a8c67821576dcb96db83439689693

Intel IA-32 architecture:

http://security.debian.org/pool/updat...g/gnupg/gnupg_1.4.1-1.sarge5_i386.deb
Size/MD5 checksum: 1908672 27f9a0178ae75e60f4190f7cc1b648b2

Intel IA-64 architecture:

http://security.debian.org/pool/updat...g/gnupg/gnupg_1.4.1-1.sarge5_ia64.deb
Size/MD5 checksum: 2325364 7cb958f11cf26f2606a8630b0837302b

HP Precision architecture:

http://security.debian.org/pool/updat...g/gnupg/gnupg_1.4.1-1.sarge5_hppa.deb
Size/MD5 checksum: 2004276 0a18314991ba8b9df2197dc59fa9fc9b

Motorola 680x0 architecture:

http://security.debian.org/pool/updat...g/gnupg/gnupg_1.4.1-1.sarge5_m68k.deb
Size/MD5 checksum: 1811104 3d34a165f7e7b9b7f7762ea3f098436a

Big endian MIPS architecture:

http://security.debian.org/pool/updat...g/gnupg/gnupg_1.4.1-1.sarge5_mips.deb
Size/MD5 checksum: 2000886 fd5a35eea245eed1d8e867c2dab420fe

Little endian MIPS architecture:

http://security.debian.org/pool/updat...gnupg/gnupg_1.4.1-1.sarge5_mipsel.deb
Size/MD5 checksum: 2007526 a7d376140cc177b7365b8931e443b511

PowerPC architecture:

http://security.debian.org/pool/updat...nupg/gnupg_1.4.1-1.sarge5_powerpc.deb
Size/MD5 checksum: 1957954 405cd2998ce0d4e4867a2b781d023db5

IBM S/390 architecture:

http://security.debian.org/pool/updat...g/gnupg/gnupg_1.4.1-1.sarge5_s390.deb
Size/MD5 checksum: 1967138 4e863993101250029ce2f276a83c964b

Sun Sparc architecture:

http://security.debian.org/pool/updat.../gnupg/gnupg_1.4.1-1.sarge5_sparc.deb
Size/MD5 checksum: 1897516 bce716a627c062c3ca034d8d49c24b58

-- Debian GNU/Linux unstable alias sid --

Fixed in version 1.4.5-1.

Original Advisory:
http://www.us.debian.org/security/2006/dsa-1140

Other References:
SA21297:
http://secunia.com/advisories/21297/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

1214 Related Secunia Security Advisories, displaying 10

1. Debian update for tiff
2. Debian update for libxml2
3. Debian update for postfix
4. Debian update for pdns
5. Debian update for httracker
6. Debian update for opensc
7. Debian update for cupsys
8. Debian update for libxslt
9. Debian update for newsx
10. Debian update for ruby1.9

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
HP TCP/IP Services for OpenVMS Finger Format String Vulnerability
2.
Adium MSN SLP Message Integer Overflow Vulnerabilities
3.
Sun Solaris Kernel Covert Channel Security Bypass
4.
Novell eDirectory Multiple Vulnerabilities
5.
dotProject SQL Injection and Cross-Site Scripting
6.
Caudium "configvar" Insecure Temporary Files
7.
Blogn Cross-Site Scripting and Cross-Site Request Forgery
8.
GpsDrive "geo-code" Insecure Temporary Files
9.
Novell Forum TCL Command Injection Vulnerability
10.
geo-* Insecure Temporary Files





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia