Thursday, July 12, 2018

RHSA-2018:2180 and RHSA-2018:2181 : Important: gnupg2 security update


Vulnerabilities





Fixes


  • BZ - 1589620 - CVE-2018-12020 gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification




CVEs


  • CVE-2018-12020
    CVSS3 Base Score 7.5
    CVSS3 Base Metrics CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N



Prioritization

Due to the CVSS3 score (7.5) this vulnerability has HIGH priority.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)