Bug 47290

Summary:	gnupg2: Multiple issues (4.3)
Product:	UCS	Reporter:	Philipp Hahn <hahn>
Component:	Security updates	Assignee:	Quality Assurance <qa>
Status:	CLOSED FIXED	QA Contact:	Philipp Hahn <hahn>
Severity:	normal
Priority:	P3
Version:	UCS 4.3
Target Milestone:	UCS 4.3-1-errata
Hardware:	All
OS:	Linux
What kind of report is it?:	Security Issue	What type of bug is this?:	---
Who will be affected by this bug?:	---	How will those affected feel about the bug?:	---
User Pain:		Enterprise Customer affected?:
School Customer affected?:		ISV affected?:
Waiting Support:		Flags outvoted (downgraded) after PO Review:
Ticket number:		Bug group (optional):
Max CVSS v3 score:	7.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)

Description Philipp Hahn

2018-07-03 14:13:26 CEST

New Debian gnupg2 2.1.18-8~deb9u2 fixes:
This update addresses the following issue(s):
* 

This update addresses the following issue(s):
* 
CVE_2018-9234 is open
* mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represent an original filename that contains line feed characters in conjunction with GOODSIG or VALIDSIG status codes. (CVE-2018-12020)

2.1.18-8~deb9u2 (Fri, 08 Jun 2018 20:12:24 +0200)
  * Non-maintainer upload by the Security Team.
  * gpg: Sanitize diagnostic with the original file name (CVE-2018-12020)
* CVE-2018-12020 gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification (CVE-2018-12020)

Comment 1 Philipp Hahn

2018-07-03 16:38:09 CEST

[4.3-1] 45dd7ecae8 Bug #47290: gnupg2 2.1.18-8~deb9u2
 doc/errata/staging/gnupg2.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

<http://10.200.17.11/4.3-1/#3397546647153217401>

Comment 2 Philipp Hahn

2018-07-04 11:57:39 CEST

<http://jenkins.knut.univention.de:8080/job/UCS-4.3/job/UCS-4.3-1/job/ErrataValidation/233/console>
OK: Jenkins <http://jenkins.knut.univention.de:8080/job/UCS-4.3/job/UCS-4.3-1/job/AutotestJoin/lastCompletedBuild/testReport/>

Comment 3 Arvid Requate

2018-07-04 14:54:03 CEST

<http://errata.software-univention.de/ucs/4.3/132.html>