[El-errata] ELSA-2013-1459 Moderate: Oracle Linux 5 gnupg2 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Oct 24 19:45:22 PDT 2013
Oracle Linux Security Advisory ELSA-2013-1459
https://rhn.redhat.com/errata/RHSA-2013-1459.html
The following updated rpms for Oracle Linux 5 have been uploaded to the
Unbreakable Linux Network:
i386:
gnupg2-2.0.10-6.el5_10.i386.rpm
x86_64:
gnupg2-2.0.10-6.el5_10.x86_64.rpm
ia64:
gnupg2-2.0.10-6.el5_10.ia64.rpm
SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/gnupg2-2.0.10-6.el5_10.src.rpm
Description of changes:
[2.0.10-6]
- fix CVE-2013-4351 gpg treats no-usage-permitted keys as
all-usages-permitted
[2.0.10-5]
- fix CVE-2012-6085 GnuPG: read_block() corrupt key input validation
- fix CVE-2013-4402 GnuPG: infinite recursion in the compressed packet
parser
[2.0.10-4]
- fix use after free when importing certain X509 certificates
CVE-2010-2547 (#618156)
More information about the El-errata
mailing list