Computer Security
[EN] securityvulns.ru no-pyccku


GnuPG DoS
Published:26.06.2014
Source:
SecurityVulns ID:13855
Type:library
Threat Level:
6/10
Description:Infinite loop in decompression.
Affected:GNU : GnuPG 1.4
 GNU : GnuPG 2.0
CVE:CVE-2014-4617 (The do_uncompress function in g10/compress.c in GnuPG 1.x before 1.4.17 and 2.x before 2.0.24 allows context-dependent attackers to cause a denial of service (infinite loop) via malformed compressed packets, as demonstrated by an a3 01 5b ff byte sequence.)
Original documentdocumentSLACKWARE, [slackware-security] gnupg (SSA:2014-175-02) (26.06.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod