{"id":"MGASA-2014-0340","summary":"Updated gpgme packages fix CVE-2014-3564","details":"Updated gpgme packages fix security vulnerability:\n\nA heap-based buffer overflow in gpgme before 1.5.1 could allow a specially\ncrafted certificate to cause crashes or potentially cause arbitrary code\nexecution (CVE-2014-3564).\n","modified":"2026-01-30T15:33:21.207534Z","published":"2014-08-21T09:36:13Z","related":["CVE-2014-3564"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2014-0340.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=13827"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1113267"}],"affected":[{"package":{"name":"gpgme","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/gpgme?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3.2-2.1.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0340.json"}},{"package":{"name":"gpgme","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/gpgme?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.3-2.1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0340.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}