Search for packages
Package details: pkg:deb/debian/gnupg1@1.4.23-1
purl pkg:deb/debian/gnupg1@1.4.23-1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-4u1u-zxbs-aaag mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represent an original filename that contains line feed characters in conjunction with GOODSIG or VALIDSIG status codes. CVE-2018-12020
VCID-vavn-12uu-aaan libgcrypt before version 1.7.8 is vulnerable to a cache side-channel attack resulting into a complete break of RSA-1024 while using the left-to-right method for computing the sliding-window expansion. The same attack is believed to work on RSA-2048 with moderately more computation. This side-channel requires that attacker can run arbitrary software on the hardware where the private RSA key is used. CVE-2017-7526

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T17:18:32.465446+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:37:12.518434+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-20T21:34:28.940431+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan None 36.1.3
2025-06-20T20:29:52.514439+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag None 36.1.3
2025-06-08T13:10:27.977559+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T09:59:39.041450+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:34:35.990214+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T14:56:59.889243+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan None 36.1.0
2025-06-07T14:03:54.498725+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag None 36.1.0
2025-04-12T21:54:20.663578+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:58:10.293059+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T08:31:55.556114+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:06:04.773473+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T13:28:57.680860+00:00 Debian Oval Importer Fixing VCID-vavn-12uu-aaan None 36.0.0
2025-04-07T12:37:51.353245+00:00 Debian Oval Importer Fixing VCID-4u1u-zxbs-aaag None 36.0.0
2025-04-06T13:22:09.347476+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 36.0.0
2025-02-18T23:03:23.419123+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 35.1.0
2024-11-21T20:44:27.005564+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 35.0.0
2024-11-19T19:52:35.445878+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 34.3.2
2024-10-08T21:11:41.656503+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 34.0.2
2024-09-18T09:16:23.643994+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 34.0.1
2024-04-24T11:40:49.096532+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 34.0.0rc4
2024-01-10T13:31:17.173598+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 34.0.0rc2
2024-01-04T04:50:48.976557+00:00 Debian Importer Fixing VCID-vavn-12uu-aaan None 34.0.0rc1