CVE-2013-4402

Published: 07 October 2013

The compressed packet parser in GnuPG 1.4.x before 1.4.15 and 2.0.x before 2.0.22 allows remote attackers to cause a denial of service (infinite recursion) via a crafted OpenPGP message.

Priority

Medium

Status

Package Release Status
gnupg
Launchpad, Ubuntu, Debian
Upstream
Released (1.4.15)
gnupg2
Launchpad, Ubuntu, Debian
Upstream
Released (2.0.22)