30 matches found
Security update for gpg2 (important)
openSUSE security update: security update for gpg2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20029-1 Rating: important References: bsc1255715 bsc1256244 bsc1256246 bsc1256390 Cross-References: CVE-2025-68973 CVSS scores: CVE-2025-68973 SUSE : ...
SUSE-SU-2026:20080-1 Security update for gpg2
This update for gpg2 fixes the following issues: - CVE-2025-68973: out-of-bounds write when processing specially crafted input in the armor parser can lead to memory corruption bsc1255715. Other security fixes: - gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures bsc1256246. - gpg...
SUSE-SU-2026:20108-1 Security update for gpg2
This update for gpg2 fixes the following issues: - CVE-2025-68973: out-of-bounds write when processing specially crafted input in the armor parser can lead to memory corruption bsc1255715. Other security fixes: - gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures bsc1256246. - gpg...
OPENSUSE-SU-2026:20029-1 Security update for gpg2
This update for gpg2 fixes the following issues: - CVE-2025-68973: out-of-bounds write when processing specially crafted input in the armor parser can lead to memory corruption bsc1255715. Other security fixes: - gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures bsc1256246. - gpg...
SUSE-SU-2026:20243-1 Security update for gpg2
This update for gpg2 fixes the following issues: - CVE-2025-68973: out-of-bounds write when processing specially crafted input in the armor parser can lead to memory corruption bsc1255715. Other security fixes: - gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures bsc1256246. - gpg...
SUSE-SU-2026:20356-1 Security update for gpg2
This update for gpg2 fixes the following issues: - CVE-2025-68973: out-of-bounds write when processing specially crafted input in the armor parser can lead to memory corruption bsc1255715. Other security fixes: - gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures bsc1256246. - gpg...
GnuPG: Arbitrary Code Execution
Background The GNU Privacy Guard, GnuPG, is a free replacement for the PGP suite of cryptographic software. Description A vulnerability has been discovered in GnuPG's armor parser. Impact A remote attacker could entice a user or automated system to process a specially crafted signature file,...
GLSA-202512-01 : GnuPG: Arbitrary Code Execution
The remote host is affected by the vulnerability described in GLSA-202512-01 GnuPG: Arbitrary Code Execution A vulnerability has been discovered in GnuPG's armor parser. Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory. Note that Nessus has no...
EUVD-2001-0265
Malware in sbrugna...
CVE-2001-0265
CVE-2001-0265 concerns the Windows PGP ASCII Armor parser (versions Windows PGP 5 to 7.0.3, latest). The vulnerability arises from handling malformed ASCII-armored data, which allows an attacker to create arbitrary files in the same directory as the armored file. This can lead to arbitrary code e...