mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-05-28 09:12:00 +00:00
102 lines
3.5 KiB
JSON
102 lines
3.5 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "secalert@redhat.com",
|
|
"ID": "CVE-2013-4351",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "http://thread.gmane.org/gmane.comp.encryption.gpg.devel/17712/focus=18138",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://thread.gmane.org/gmane.comp.encryption.gpg.devel/17712/focus=18138"
|
|
},
|
|
{
|
|
"name": "openSUSE-SU-2013:1532",
|
|
"refsource": "SUSE",
|
|
"url": "http://lists.opensuse.org/opensuse-updates/2013-10/msg00006.html"
|
|
},
|
|
{
|
|
"name": "USN-1987-1",
|
|
"refsource": "UBUNTU",
|
|
"url": "http://ubuntu.com/usn/usn-1987-1"
|
|
},
|
|
{
|
|
"name": "DSA-2773",
|
|
"refsource": "DEBIAN",
|
|
"url": "http://www.debian.org/security/2013/dsa-2773"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20130913 Re: GnuPG treats no-usage-permitted keys as all-usages-permitted",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2013/09/13/4"
|
|
},
|
|
{
|
|
"name": "RHSA-2013:1459",
|
|
"refsource": "REDHAT",
|
|
"url": "http://rhn.redhat.com/errata/RHSA-2013-1459.html"
|
|
},
|
|
{
|
|
"name": "openSUSE-SU-2013:1526",
|
|
"refsource": "SUSE",
|
|
"url": "http://lists.opensuse.org/opensuse-updates/2013-10/msg00003.html"
|
|
},
|
|
{
|
|
"name": "DSA-2774",
|
|
"refsource": "DEBIAN",
|
|
"url": "http://www.debian.org/security/2013/dsa-2774"
|
|
},
|
|
{
|
|
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1010137",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1010137"
|
|
}
|
|
]
|
|
}
|
|
} |