CVE-2007-1263 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2007-1263 Interim 1 5 2023-12-09T02:15:34Z current 2021-05-30T12:38:07Z 2023-12-09T02:15:34Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2007-1263 GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NLELHYEIAYKOLY7QYQKB6UEISXIDAXVK/#NLELHYEIAYKOLY7QYQKB6UEISXIDAXVK E-Mail link for SUSE-SA:2007:024 https://www.suse.com/support/security/rating/ SUSE Security Ratings GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection. CVE-2007-1263 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N