Unrated severityNVD Advisory· Published Mar 6, 2007· Updated Jun 16, 2026
CVE-2007-1263
CVE-2007-1263
Description
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
33- www.coresecurity.comnvdPatchVendor Advisory
- patches.sgi.com/support/free/security/advisories/20070301-01-P.ascnvd
- fedoranews.org/cms/node/2775nvd
- fedoranews.org/cms/node/2776nvd
- lists.gnupg.org/pipermail/gnupg-users/2007-March/030514.htmlnvd
- lists.suse.com/archive/suse-security-announce/2007-Mar/0008.htmlnvd
- secunia.com/advisories/24365nvd
- secunia.com/advisories/24407nvd
- secunia.com/advisories/24419nvd
- secunia.com/advisories/24420nvd
- secunia.com/advisories/24438nvd
- secunia.com/advisories/24489nvd
- secunia.com/advisories/24511nvd
- secunia.com/advisories/24544nvd
- secunia.com/advisories/24650nvd
- secunia.com/advisories/24734nvd
- secunia.com/advisories/24875nvd
- securityreason.com/securityalert/2353nvd
- support.avaya.com/elmodocs2/security/ASA-2007-144.htmnvd
- www.debian.org/security/2007/dsa-1266nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2007-0106.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-0107.htmlnvd
- www.securityfocus.com/archive/1/461958/100/0/threadednvd
- www.securityfocus.com/archive/1/461958/30/7710/threadednvd
- www.securityfocus.com/bid/22757nvd
- www.securitytracker.com/idnvd
- www.trustix.org/errata/2007/0009/nvd
- www.ubuntu.com/usn/usn-432-1nvd
- www.ubuntu.com/usn/usn-432-2nvd
- www.vupen.com/english/advisories/2007/0835nvd
- issues.rpath.com/browse/RPL-1111nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10496nvd
News mentions
0No linked articles in our index yet.