GnuPG 'compress.c' Denial of Service Vulnerability

Bugtraq ID: 68156
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2014-4617
Remote: Yes
Local: No
Published: Jun 20 2014 12:00AM
Updated: Apr 13 2015 09:48PM
Credit: Olivier Levillain and Florian Maury
Vulnerable: Ubuntu Ubuntu Linux 14.04 LTS
Ubuntu Ubuntu Linux 13.10
Ubuntu Ubuntu Linux 12.04 LTS i386
Ubuntu Ubuntu Linux 12.04 LTS amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
Slackware Slackware Linux 14.1
Slackware Slackware Linux 14.0
Slackware Slackware Linux 13.37
Slackware Slackware Linux 13.1
Slackware Slackware Linux 13.0
Mandriva Business Server 1 X86 64
Mandriva Business Server 1
Gnupg Gnupg 2.0.23
Gnupg Gnupg 2.0.22
Gnupg Gnupg 2.0.21
Gnupg Gnupg 2.0.17
Gnupg Gnupg 2.0.16
Gnupg Gnupg 2.0.15
Gnupg Gnupg 2.0.14
Gnupg Gnupg 2.0.13
Gnupg Gnupg 2.0.11
Gnupg Gnupg 2.0.10
Gnupg Gnupg 2.0.8
Gnupg Gnupg 2.0.7
Gnupg Gnupg 2.0
Gnupg Gnupg 1.4.15
Gnupg Gnupg 1.4.14
Gnupg Gnupg 1.4.13
Gnupg Gnupg 1.4.12
Gnupg Gnupg 1.4.11
Gnupg Gnupg 1.4.10
Gnupg Gnupg 1.4.8
Gnupg Gnupg 1.4.5
Gnupg Gnupg 1.4.2
Gnupg Gnupg 1.3.6
Gnupg Gnupg 1.3.4
Gnupg Gnupg 1.3.3
Gnupg Gnupg 1.3.2
Gnupg Gnupg 1.2.7
Gnupg Gnupg 1.2.5
Gnupg Gnupg 1.2.4
Gnupg Gnupg 1.2.1
Gnupg Gnupg 1.1
Gnupg Gnupg 1.0.7
Gnupg Gnupg 1.0.6
Gnupg Gnupg 1.0.5
Gnupg Gnupg 1.0.4
Gnupg Gnupg 1.0.2
Gnupg Gnupg 2.0.6
Gnupg Gnupg 2.0.5
Gnupg Gnupg 2.0.20
Gnupg Gnupg 2.0.19
Gnupg Gnupg 2.0.18
Gnupg Gnupg 2.0.12
Gnupg Gnupg 2.0.1
Gnupg Gnupg 1.4.4
Gnupg Gnupg 1.4.16
Gnupg Gnupg 1.4.0
Gnupg Gnupg 1.3.92
Gnupg Gnupg 1.3.91
Gnupg Gnupg 1.3.90
Gnupg Gnupg 1.3.1
Gnupg Gnupg 1.3.0
Gnupg Gnupg 1.2.6
Gnupg Gnupg 1.2.3
Gnupg Gnupg 1.2.2
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: Gnupg Gnupg 2.0.24
Gnupg Gnupg 1.4.17


 

Privacy Statement
Copyright 2010, SecurityFocus