VDB

GCVE-VVD-MAGEIA-2018-292

GCVE-VVD-MAGEIA-2018-292
Advisory Published
Vulnetix · Advisory published June 19, 2018
Updated gnupg, gnupg2, and python-gnupg packages fix security vulnerability: Marcus Brinkmann discovered that during decryption or verification, GnuPG did not properly filter out terminal sequences when reporting the original filename. An attacker could use this to specially craft a file that would cause an application parsing GnuPG output to incorrectly interpret the status of the cryptographic operation reported by GnuPG (CVE-2018-12020).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiagnupg0 (affected), 1.4.19-1.4.mga5 (unaffected)
Mageiagnupg20 (affected), 2.0.27-1.2.mga5 (unaffected)
Mageiapython-gnupg0 (affected), 0.3.6-4.1.mga5 (unaffected)
Mageiagnupg0 (affected), 1.4.23-1.mga6 (unaffected)
Mageiagnupg20 (affected), 2.1.21-3.1.mga6 (unaffected)
Mageiapython-gnupg0 (affected), 0.3.8-2.1.mga6 (unaffected)

References

Updated gnupg gnupg2 packages fix a security vulnerability
advisory
Updated gnupg gnupg2 packages fix a security vulnerability
issue
Updated gnupg gnupg2 packages fix a security vulnerability
issue
Updated gnupg gnupg2 packages fix a security vulnerability
issue
Updated gnupg gnupg2 packages fix a security vulnerability
issue
Updated gnupg gnupg2 packages fix a security vulnerability
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›