Описание
ELSA-2020-4490: gnupg2 security, bug fix, and enhancement update (MODERATE)
[2.2.20-2]
- fixes for issues found in Coverity scan
[2.2.20-1]
- upgrade to 2.2.20
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
gnupg2
2.2.20-2.el8
gnupg2-smime
2.2.20-2.el8
Oracle Linux x86_64
gnupg2
2.2.20-2.el8
gnupg2-smime
2.2.20-2.el8
Связанные CVE
Связанные уязвимости
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.
