Nessus Plugin #15266
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA429] DSA-429-1 gnupg
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-429-1 gnupg
- Version:
- $Revision: 1.4 $
- Cve_id:
- CAN-2003-0971
- Bugtraq_id:
- 9115
- Xrefs:
- DSA:429
- Description:
Phong Nguyen identified a severe bug in the way GnuPG creates and uses
ElGamal keys for signing. This is a significant security failure
which can lead to a compromise of almost all ElGamal keys used for
signing.
This update disables the use of this type of key.
For the current stable distribution (woody) this problem has been
fixed in version 1.0.6-4woody1.
For the unstable distribution, this problem has been fixed in version
1.2.4-1.
We recommend that you update your gnupg package.
Solution : http://www.debian.org/security/2004/dsa-429
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.