Oval Definition:oval:com.ubuntu.precise:def:20134351000
Revision Date:2013-10-09Version:1
Title:CVE-2013-4351 on Ubuntu 12.04 LTS (precise) - low.
Description:GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-4351
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • The 'gnupg' package in precise was vulnerable but has been fixed (note: '1.4.11-3ubuntu2.4').
  • OR The 'gnupg2' package in precise was vulnerable but has been fixed (note: '2.0.17-2ubuntu2.12.04.3').
  • BACK