logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-34903

Description

GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.


Affected Software


CPE Name Name Version
gnupg:gnupg gnupg 2.3.6
fedoraproject:fedora fedoraproject fedora 35
fedoraproject:fedora fedoraproject fedora 36
debian:debian_linux debian debian linux 10.0
debian:debian_linux debian debian linux 11.0
netapp:ontap_select_deploy_administration_utility netapp ontap select deploy administration utility -
netapp:active_iq_unified_manager netapp active iq unified manager -

Related