{"id":"MGASA-2014-0276","summary":"Updated gnupg & gnupg2 packages fixes CVE-2014-4617","details":"Updated gnupg and gnupg2 packages fix security vulnerability:\n\nGnuPG versions before 1.4.17 and 2.0.24 are vulnerable to a denial of\nservice which can be caused by garbled compressed data packets which\nmay put gpg into an infinite loop (CVE-2014-4617).\n","modified":"2026-04-16T01:45:15.568881820Z","published":"2014-06-27T15:08:48Z","upstream":["CVE-2014-4617"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2014-0276.html"},{"type":"WEB","url":"http://lists.gnupg.org/pipermail/gnupg-announce/2014q2/000344.html"},{"type":"WEB","url":"http://lists.gnupg.org/pipermail/gnupg-announce/2014q2/000345.html"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2014/06/24/14"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=13590"}],"affected":[{"package":{"name":"gnupg","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/gnupg?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.14-1.3.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0276.json"}},{"package":{"name":"gnupg2","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/gnupg2?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.0.19-3.3.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0276.json"}},{"package":{"name":"gnupg","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/gnupg?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.16-1.1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0276.json"}},{"package":{"name":"gnupg2","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/gnupg2?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.0.22-3.1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0276.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}