Lucene search
K

Low: gnupg2

🗓️ 07 Jul 2026 00:00:00Reported by AmazonType 
amazon
 amazon
🔗 alas.aws.amazon.com👁 3 Views

GPGSM CMS parsing mishandles AES-GCM ICV length; accepts 4 bytes instead of 12 (CVE-2026-57062).

Related
Packages
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-57062
23 Jun 202617:26
attackerkb
CVE
CVE-2026-57062
23 Jun 202617:26
cve
Cvelist
CVE-2026-57062
23 Jun 202617:26
cvelist
Debian CVE
CVE-2026-57062
23 Jun 202617:26
debiancve
EUVD
EUVD-2026-38550
23 Jun 202617:26
euvd
Microsoft CVE
CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is supposed to be 12 bytes but 4 bytes is accepted. NOTE: this is related to CVE-2026-34182.
27 Jun 202608:05
mscve
NVD
CVE-2026-57062
23 Jun 202618:18
nvd
OSV
BELL-CVE-2026-57062
25 Jun 202606:12
osv
OSV
DEBIAN-CVE-2026-57062
23 Jun 202618:18
osv
OSV
ECHO-89C6-C3E9-D8D2
24 Jun 202609:29
osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Amazon Linux2aarch64gnupg22.3.7-1.amzn2023.0.9gnupg2-2.3.7-1.amzn2023.0.9.aarch64.rpm
Amazon Linux2x86_64gnupg22.3.7-1.amzn2023.0.9gnupg2-2.3.7-1.amzn2023.0.9.x86_64.rpm
Amazon Linux2aarch64gnupg2-debuginfo2.3.7-1.amzn2023.0.9gnupg2-debuginfo-2.3.7-1.amzn2023.0.9.aarch64.rpm
Amazon Linux2x86_64gnupg2-debuginfo2.3.7-1.amzn2023.0.9gnupg2-debuginfo-2.3.7-1.amzn2023.0.9.x86_64.rpm
Amazon Linux2aarch64gnupg2-debugsource2.3.7-1.amzn2023.0.9gnupg2-debugsource-2.3.7-1.amzn2023.0.9.aarch64.rpm
Amazon Linux2x86_64gnupg2-debugsource2.3.7-1.amzn2023.0.9gnupg2-debugsource-2.3.7-1.amzn2023.0.9.x86_64.rpm
Amazon Linux2aarch64gnupg2-minimal2.3.7-1.amzn2023.0.9gnupg2-minimal-2.3.7-1.amzn2023.0.9.aarch64.rpm
Amazon Linux2x86_64gnupg2-minimal2.3.7-1.amzn2023.0.9gnupg2-minimal-2.3.7-1.amzn2023.0.9.x86_64.rpm
Amazon Linux2aarch64gnupg2-minimal-debuginfo2.3.7-1.amzn2023.0.9gnupg2-minimal-debuginfo-2.3.7-1.amzn2023.0.9.aarch64.rpm
Amazon Linux2x86_64gnupg2-minimal-debuginfo2.3.7-1.amzn2023.0.9gnupg2-minimal-debuginfo-2.3.7-1.amzn2023.0.9.x86_64.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

07 Jul 2026 00:00Current
5.9Medium risk
Vulners AI Score5.9
CVSS 3.12.9
EPSS0.0011
3