USN-3853-1: GnuPG vulnerability
10 January 2019
GnuPG could allow unintended access to network services.
- gnupg2 - GNU privacy guard - a free PGP replacement
Ben Fuhrmannek discovered that GnuPG incorrectly handled Web Key Directory
lookups. A remote attacker could possibly use this issue to cause a denial
of service, or perform Cross-Site Request Forgery attacks.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.