Total vulnerabilities in the database
The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and 2.0.x through 2.0.19, when importing a key, allows remote attackers to corrupt the public keyring database or cause a denial of service (application crash) via a crafted length field of an OpenPGP packet.
| Software | From | Fixed in |
|---|---|---|
| gnupg / gnupg | 1.4.8 | 1.4.8.x |
| gnupg / gnupg | 1.4.10 | 1.4.10.x |
| gnupg / gnupg | 1.4.4 | 1.4.4.x |
| gnupg / gnupg | 1.4.0 | 1.4.0.x |
| gnupg / gnupg | 1.4.12 | 1.4.12.x |
| gnupg / gnupg | 1.4.2 | 1.4.2.x |
| gnupg / gnupg | 1.4.11 | 1.4.11.x |
| gnupg / gnupg | 1.4.3 | 1.4.3.x |
| gnupg / gnupg | 1.4.5 | 1.4.5.x |
| gnupg / gnupg | 2.0.1 | 2.0.1.x |
| gnupg / gnupg | 2.0.7 | 2.0.7.x |
| gnupg / gnupg | 2.0.15 | 2.0.15.x |
| gnupg / gnupg | 2.0.8 | 2.0.8.x |
| gnupg / gnupg | 2.0.11 | 2.0.11.x |
| gnupg / gnupg | 2.0.6 | 2.0.6.x |
| gnupg / gnupg | 2.0.10 | 2.0.10.x |
| gnupg / gnupg | 2.0.13 | 2.0.13.x |
| gnupg / gnupg | 2.0 | 2.0.x |
| gnupg / gnupg | 2.0.5 | 2.0.5.x |
| gnupg / gnupg | 2.0.17 | 2.0.17.x |
| gnupg / gnupg | 2.0.12 | 2.0.12.x |
| gnupg / gnupg | 2.0.18 | 2.0.18.x |
| gnupg / gnupg | 2.0.16 | 2.0.16.x |
| gnupg / gnupg | 2.0.14 | 2.0.14.x |
| gnupg / gnupg | 2.0.4 | 2.0.4.x |
| gnupg / gnupg | 2.0.3 | 2.0.3.x |
| gnupg / gnupg | 2.0.19 | 2.0.19.x |