Update on GnuPG

Although GnuPG has released GnuPG 2.0.1, but they still maintain their 1.x version and they have just released an update for that version which have fixed a security vulnerability that existed. It has a version number of 1.4.6 and Pat as usual has put this problem at first priority and released an updated package for Slackware 9.0 and newer. Here's the latest -stable changelog:
Wed Dec 6 15:16:06 CST 2006
patches/packages/gnupg-1.4.6-i486-1_slack11.0.tgz:
Upgraded to gnupg-1.4.6. This release fixes a severe and exploitable bug in earlier versions of gnupg. All gnupg users should update to the new packages as soon as possible. For details, see the information concerning CVE-2006-6235 posted on lists.gnupg.org:
http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000491.html
The CVE entry for this issue may be found here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6235
This update also addresses a more minor security issue possibly exploitable when GnuPG is used in interactive mode. For more information about that issue, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6169
(* Security fix *)

Popular posts from this blog

NVidia Legacy Unix Driver Update

Python 3.6.0 in SBo 14.2 repository

Security Update: Thunderbird, Seamonkey, libpng, python, samba