CVE-2015-1606

MEDIUM5.5EPSS 0.47%
發布日:2019/11/20修改日:2026/4/28
也稱為:DEBIAN-CVE-2015-1606

描述

The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service (invalid read and use-after-free) via a crafted keyring file.

受影響套件(1)

CVSS 分數

來源版本嚴重程度向量
osvCVSS 3.1MEDIUM5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

參考連結(1)