CVE-2013-4402
EUVD-2013-428128.10.2013, 22:55
The compressed packet parser in GnuPG 1.4.x before 1.4.15 and 2.0.x before 2.0.22 allows remote attackers to cause a denial of service (infinite recursion) via a crafted OpenPGP message.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnupg | gnupg | 1.4.0 |
| gnupg | gnupg | 1.4.2 |
| gnupg | gnupg | 1.4.3 |
| gnupg | gnupg | 1.4.4 |
| gnupg | gnupg | 1.4.5 |
| gnupg | gnupg | 1.4.8 |
| gnupg | gnupg | 1.4.10 |
| gnupg | gnupg | 1.4.11 |
| gnupg | gnupg | 1.4.12 |
| gnupg | gnupg | 1.4.13 |
| gnupg | gnupg | 1.4.14 |
| gnupg | gnupg | 2.0 |
| gnupg | gnupg | 2.0.1 |
| gnupg | gnupg | 2.0.10 |
| gnupg | gnupg | 2.0.11 |
| gnupg | gnupg | 2.0.12 |
| gnupg | gnupg | 2.0.13 |
| gnupg | gnupg | 2.0.14 |
| gnupg | gnupg | 2.0.15 |
| gnupg | gnupg | 2.0.16 |
| gnupg | gnupg | 2.0.17 |
| gnupg | gnupg | 2.0.18 |
| gnupg | gnupg | 2.0.19 |
| gnupg | gnupg | 2.0.20 |
| gnupg | gnupg | 2.0.21 |
| canonical | ubuntu_linux | 10.04 |
| canonical | ubuntu_linux | 12.04 |
| canonical | ubuntu_linux | 12.10 |
| canonical | ubuntu_linux | 13.04 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| gnupg |
| ||||||||
| gnupg2 |
|
Common Weakness Enumeration
References