Security Advisory

CVE-2013-4351

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-10-10 00:00:00

Last updated 2024-08-06 16:38:01

Assigner redhat

State PUBLISHED

Description

GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey.

← Browse all CVEs View on cve.org ↗