Lucene search
+L

236 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.8 views

Debian dla-4437 : dirmngr - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4437 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4437-1 [email protected] https://www.debian.org/lts/security/...

7.8CVSS6.9AI score0.00129EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/01/12 12:0 a.m.8 views

TencentOS Server 4: gnupg2 (TSSA-2026:0002)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0002 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.8CVSS5.9AI score0.00129EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/30 12:15 p.m.27 views

CVE-2022-50860 apparmor: Fix memleak in alloc_ns()

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix memleak in allocns After changes in commit a1bd627b46d1 "apparmor: share profile name on replacement", the hname member of struct aapolicy is not valid slab object, but a subset of that, it can not be freed by...

0.00206EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/12/30 9:1 a.m.12 views

In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

...

7.8CVSS6.7AI score0.00129EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2025/12/30 12:23 a.m.11 views

SUSE CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

8CVSS6.8AI score0.00129EPSS
Exploits1References17
Microsoft CVE
Microsoft CVE
added 2025/12/29 9:1 a.m.5 views

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

...

5.9CVSS6.7AI score0.00104EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/29 6:16 a.m.8 views

CVE-2025-68973

A flaw was found in GnuPG. An attacker can provide crafted input to the armorfilter function, which incorrectly increments an index variable, leading to an out-of-bounds write. This memory corruption vulnerability may allow for information disclosure and could potentially lead to arbitrary code...

7.8CVSS6.8AI score0.00129EPSS
Exploits1References8
EUVD
EUVD
added 2025/12/28 6:30 p.m.7 views

EUVD-2025-205519

In GnuPG through 2.4.8, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input...

7.8CVSS6.6AI score0.00129EPSS
Exploits1References6
NVD
NVD
added 2025/12/28 5:16 p.m.14 views

CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS0.00129EPSS
Exploits1References9
OSV
OSV
added 2025/12/28 5:16 p.m.6 views

AZL-73367 CVE-2025-68973 affecting package gnupg2 for versions less than 2.4.0-3

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS7.1AI score0.00129EPSS
Exploits1References1
OSV
OSV
added 2025/12/28 5:16 p.m.7 views

AZL-73204 CVE-2025-68973 affecting package gnupg2 for versions less than 2.4.9-1

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS7.1AI score0.00129EPSS
Exploits1References1
OSV
OSV
added 2025/12/28 5:16 p.m.8 views

ALPINE-CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7CVSS7AI score0.00129EPSS
Exploits1References1
OSV
OSV
added 2025/12/28 5:16 p.m.5 views

UBUNTU-CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS7.1AI score0.00129EPSS
Exploits1References16
Vulnrichment
Vulnrichment
added 2025/12/28 4:19 p.m.5 views

CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS6.4AI score0.00129EPSS
Exploits1References7
AlpineLinux
AlpineLinux
added 2025/12/28 4:19 p.m.6 views

CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS6.9AI score0.00129EPSS
Exploits1References9
OSV
OSV
added 2025/12/28 4:19 p.m.8 views

CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS6.7AI score0.00129EPSS
Exploits1References11
Debian CVE
Debian CVE
added 2025/12/28 4:19 p.m.10 views

CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

7.8CVSS6.6AI score0.00129EPSS
Exploits1
CVE
CVE
added 2025/12/28 4:19 p.m.80 views

CVE-2025-68973

CVE-2025-68973 affects GnuPG (gnupg2) through versions before 2.4.9. The issue is in armor_filter() in g10/armor.c where two increments of an index variable are not both intended, enabling an out-of-bounds write with crafted input. In practice, advisories describe potential information disclosure...

7.8CVSS6.4AI score0.00129EPSS
Exploits1References9Affected Software1
CNNVD
CNNVD
added 2025/12/28 12:0 a.m.5 views

GNUPG 安全漏洞

GNUPG is a suite of open source cryptographic software from the American GNU community under the GNU General Public License. The software supports public key, symmetric encryption, hashing, and other algorithms. A security vulnerability exists in GNUPG 2.4.8 and earlier versions, which stems from...

7.8CVSS6.3AI score0.00129EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2025/12/28 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2025-68973

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted...

7.8CVSS5.5AI score0.00129EPSS
Exploits1References2
Rows per page
Query Builder