[ MDVSA-2014:180 ] gnupg

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2014:180
 http://www.mandriva.com/en/support/security/
 _______________________________________________________________________

 Package : gnupg
 Date    : September 22, 2014
 Affected: Business Server 1.0
 _______________________________________________________________________

 Problem Description:

 Updated gnupg packages fix security vulnerability:
 
 The gnupg program before version 1.4.16 is vulnerable to an ELGAMAL
 side-channel attack (CVE-2014-5270).
 _______________________________________________________________________

 References:

 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5270
 http://advisories.mageia.org/MGASA-2014-0381.html
 _______________________________________________________________________

 Updated Packages:

 Mandriva Business Server 1/X86_64:
 9181a3cd9d0ddb0ef93bf14cc11b2d99  mbs1/x86

Leave a Reply