Lucene search
K

410 matches found

Amazon
Amazon
added 2026/02/05 12:0 a.m.11 views

Important: gnupg2

Issue Overview: In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions. CVE-2025-68973 Affected Packages: gnupg2 Issue Correction: Ru...

7.8CVSS5.4AI score0.00129EPSS
Exploits1
OSV
OSV
added 2026/02/04 7:38 a.m.4 views

SUSE-SU-2026:0378-1 Security update for gpg2

This update for gpg2 fixes the following issues: - CVE-2025-68973: Fixed possile memory corruption in the armor parser T7906 bsc1255715 - Fixed GnuPG Accepting Path Separators and Path Traversals in Literal Data bsc1256389 - Fixed Cleartext Signature Forgery in the NotDashEscaped header...

7.8CVSS5.8AI score0.00129EPSS
Exploits1References6
OSV
OSV
added 2026/02/02 10:7 a.m.7 views

RHSA-2026:1677 Red Hat Security Advisory: gnupg2 security update

Bulletin has no description...

7.8CVSS4.7AI score0.00129EPSS
Exploits1References12
OSV
OSV
added 2026/02/02 10:7 a.m.7 views

RHSA-2026:1629 Red Hat Security Advisory: gnupg2 security update

Bulletin has no description...

7.8CVSS4.9AI score0.00129EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2026/02/02 7:37 a.m.17 views

Important: Red Hat Security Advisory: gnupg2 security update

An update for gnupg2 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.6AI score0.00129EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/02/02 7:37 a.m.12 views

GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

A flaw was found in GnuPG. An attacker can provide crafted input to the armorfilter function, which incorrectly increments an index variable, leading to an out-of-bounds write. This memory corruption vulnerability may allow for information disclosure and could potentially lead to arbitrary code...

7.8CVSS6AI score0.00129EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2026/02/02 1:57 a.m.9 views

GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

A flaw was found in GnuPG. An attacker can provide crafted input to the armorfilter function, which incorrectly increments an index variable, leading to an out-of-bounds write. This memory corruption vulnerability may allow for information disclosure and could potentially lead to arbitrary code...

7.8CVSS6AI score0.00129EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2026/02/02 1:57 a.m.15 views

Important: Red Hat Security Advisory: gnupg2 security update

An update for gnupg2 is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.6AI score0.00129EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.7 views

RHEL 9 : gnupg2 (RHSA-2026:1719)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1719 advisory. The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Securi...

7.8CVSS6.4AI score0.00129EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.7 views

RHEL 7 : gnupg2 (RHSA-2026:1677)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1677 advisory. The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Securi...

7.8CVSS6.4AI score0.00129EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.7 views

RHEL 10 : gnupg2 (RHSA-2026:1629)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1629 advisory. The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards...

7.8CVSS6.4AI score0.00129EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2026/02/02 12:0 a.m.1 views

Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2026-1117)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.4AI score0.00179EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.4 views

EulerOS Virtualization 2.10.0 : gnupg2 (EulerOS-SA-2026-1168)

According to the versions of the gnupg2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that...

4.7CVSS6AI score0.00179EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/01/30 12:24 a.m.5 views

SUSE CVE-2026-24883

In GnuPG before 2.5.17, a long signature packet length causes parsesignature to return success with sig-data set to a NULL value, leading to a denial of service application crash...

7.5CVSS5.9AI score0.00447EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/30 12:0 a.m.4 views

Photon OS 5.0: Gnupg PHSA-2026-5.0-0737

An update of the gnupg package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0737. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS5.8AI score0.00129EPSS
Exploits1References2
OSV
OSV
added 2026/01/29 9:39 a.m.9 views

CLSA-2026-1769679566 gnupg2: Fix of CVE-2025-68973

CVE-2025-68973: fix out-of-bounds write in armorfilter function by correcting index variable increments...

7.8CVSS6.8AI score0.00129EPSS
Exploits1References1
OSV
OSV
added 2026/01/28 10:13 a.m.7 views

RHSA-2026:1468 Red Hat Security Advisory: gnupg2 security update

Bulletin has no description...

7.8CVSS5.8AI score0.00129EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2026/01/28 7:58 a.m.4 views

GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

A flaw was found in GnuPG. An attacker can provide crafted input to the armorfilter function, which incorrectly increments an index variable, leading to an out-of-bounds write. This memory corruption vulnerability may allow for information disclosure and could potentially lead to arbitrary code...

7.8CVSS6AI score0.00129EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2026/01/28 7:58 a.m.13 views

Important: Red Hat Security Advisory: gnupg2 security update

An update for gnupg2 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.6AI score0.00129EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/28 6:20 a.m.6 views

CVE-2026-24883

A flaw was found in GnuPG. A remote attacker could provide a specially crafted long signature packet that, when processed, causes the application to crash. This vulnerability leads to a denial of service DoS, making the GnuPG application unavailable to legitimate users. Mitigation Mitigation for...

5.5CVSS5.8AI score0.00447EPSS
Exploits0References5
Rows per page
Query Builder