[Pkg-gnutls-maint] Bug#391278: CVE-2006-5111: libksba denial of
service (application crash) vulnerability
Stefan Fritsch
sf at sfritsch.de
Thu Oct 5 19:27:18 UTC 2006
Package: libksba8
Version: 1.0.0-1
Severity: grave
Tags: security
Justification: user security hole
A vulnerability has been found in libksba on SUSE that might also
affect Debian:
The libksba library 0.9.12 and possibly other versions, as used by
gpgsm in the newpg package on SUSE LINUX, allows attackers to cause a
denial of service (application crash) via a malformed X.509
certificate in a signature.
More information about the Pkg-gnutls-maint
mailing list