CVE-2012-6085

Priority
Description
The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and
2.0.x through 2.0.19, when importing a key, allows remote attackers to
corrupt the public keyring database or cause a denial of service
(application crash) via a crafted length field of an OpenPGP packet.
Notes
 sarnold> reproducer key available from dropbox url
Assigned-to
mdeslaur
More Information

Updated: 2019-03-19 12:07:42 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)