Stay Secure with the Latest Linux Advisories

security advisoryencryptionFedora

Fedora 27: FEDORA-2018-3fc05e009d Critical GnuPG2 Update

Minor update from upstream with fix for CVE-2018-9234 and other bug fixes.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-3fc05e009d 2018-04-15 14:43:03.387917 --------------------------------------------------------------------------------Name : gnupg2 Product : Fedora 27 Version : 2.2.6 Release : 1.fc27 URL : http://www.gnupg.org/ Summary : Utility for secure communication and data storage Description : GnuPG is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440 and the S/MIME standard as described by several RFCs. GnuPG 2.0 is a newer version of GnuPG with additional support for S/MIME. It has a different design philosophy that splits functionality up into several modules. The S/MIME and smartcard functionality is provided by the gnupg2-smime package. --------------------------------------------------------------------------------Update Information: Minor update from upstream with fix for CVE-2018-9234 and other bug fixes. --------------------------------------------------------------------------------References: [ 1 ] Bug #1563931 - CVE-2018-9234 gnupg2: GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1563931 [ 2 ] Bug #1565387 - gnupg2-2.2.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1565387 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade gnupg2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages aresigned with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu 18.04 launches vital openssl patch, tackling CVE-2018-1234 and bolstering user security measures.. Fedora Security Update, GnuPG Update, Encryption Software Fix. . Severity: Critical. LinuxSecurity.com Team

Apr 15, 2018 •Critical Fedora