Oval Definition:	oval:org.mitre.oval:def:22297
Revision Date: 2014-02-24 Version: 10 Title: RHSA-2010:0603: gnupg2 security update (Moderate) Description: Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled in a realloc operation when importing the certificate or verifying its signature. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2010:0603 CVE-2010-2547 RHSA-2010:0603-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): gnupg2 Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND gnupg2 is earlier than 0:2.0.10-3.el5_5.1
BACK