Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA429] DSA-429-1 gnupg


Vulnerability Assessment Details

[DSA429] DSA-429-1 gnupg

Vulnerability Assessment Summary
DSA-429-1 gnupg

Detailed Explanation for this Vulnerability Assessment

Phong Nguyen identified a severe bug in the way GnuPG creates and uses
ElGamal keys for signing. This is a significant security failure
which can lead to a compromise of almost all ElGamal keys used for
signing.
This update disables the use of this type of key.
For the current stable distribution (woody) this problem has been
fixed in version 1.0.6-4woody1.
For the unstable distribution, this problem has been fixed in version
1.2.4-1.
We recommend that you update your gnupg package.


Solution : http://www.debian.org/security/2004/dsa-429
Network Security Threat Level: High

Networks Security ID: 9115

Vulnerability Assessment Copyright: This script is (C) 2005 Michel Arboi

Cables, Connectors

Crucial 8G 2x4GB Kit UDIMM 1600 MHz PC3-12800 DDR3 SDRAM RAM BLS4G3D1609DS1S00
$55.0
Crucial 8G 2x4GB Kit UDIMM 1600 MHz PC3-12800 DDR3 SDRAM RAM BLS4G3D1609DS1S00 pictureDELL Tower Quad-Core 2.6GHz-CPU 3Gb-RAM 1Tb-HDD DVD±RW MsOffice Win-XP SP3 Kb PC
$349.99
DELL Tower Quad-Core 2.6GHz-CPU 3Gb-RAM 1Tb-HDD DVD±RW MsOffice Win-XP SP3 Kb PC picture4GB Nanya PC3-10600 2Rx8 DDR3 1333MHz DIMM Desktop Memory RAM
$8.5
4GB Nanya PC3-10600 2Rx8 DDR3 1333MHz DIMM Desktop Memory RAM  pictureG.SKILL Ripjaws X Series 16GB (2 x 8GB) 240-Pin DDR3 SDRAM DDR3 1866 (PC3 14900)
$74.99
G.SKILL Ripjaws X Series 16GB (2 x 8GB) 240-Pin DDR3 SDRAM DDR3 1866 (PC3 14900) picture


Discussions

No Discussions have been posted on this vulnerability.