Package: gpgsm Version: 2.0.14-1.1 Tags: security updstream fixed-upstream GnuPG 2.0 before version 2.0.17 reuses a freed pointer when verifying a signature or importing a certificate with many Subject Alternate Names, possibly allowing context-dependent attacks to execute arbitrary code.
<http://lists.gnupg.org/pipermail/gnupg-announce/2010q3/000302.html> I'm building updates for stable right now. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
