Important: Red Hat Security Advisory: gnupg2 security update

An update for gnupg2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

A flaw was found in GnuPG. An attacker can provide crafted input to the armorfilter function, which incorrectly increments an index variable, leading to an out-of-bounds write. This memory corruption vulnerability may allow for information disclosure and could potentially lead to arbitrary code...

Important: gnupg2 security update

The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fixes: GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 For more details about...

RHEL 9 : gnupg2 (RHSA-2026:0719)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:0719 advisory. The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Securi...

Linux Distros Unpatched Vulnerability : CVE-2026-0861

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in ...

Important: gnupg2 security update

The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fixes: GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 For more details about...

ALSA-2026:0719 Important: gnupg2 security update

The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fixes: GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 For more details about...

ALSA-2026:0728 Important: gnupg2 security update

The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fixes: GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 For more details about...

GNU C Library security vulnerabilities

The GNU C Library is an open-source, free C-language compiler program published by the GNU community under the LGPL license. Versions 2.0 through 2.42 of the GNU C Library contained security vulnerabilities. These vulnerabilities occurred when using the nsswitch.conf configuration with a DNS...

PT-2026-3138

Name of the Vulnerable Software and Affected Versions GNU C Library versions 2.0 through 2.42 Description The GNU C Library contains a flaw where calling getnetbyaddr or getnetbyaddr r with a configured nsswitch.conf that specifies the library's DNS backend for networks, and querying for a...

AZL-74547 CVE-2026-0861 affecting package glibc for versions less than 2.38-18

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...

CVE-2026-0861

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...

UBUNTU-CVE-2026-0861

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...

CVE-2026-0861 Integer overflow in memalign leads to heap corruption

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...

CVE-2026-0861

GLIBC memalign family (memalign, posix_memalign, aligned_alloc) in GNU C Library versions 2.30–2.42 is affected by an integer overflow when an input alignment is too large and the size argument is near PTRDIFF_MAX, which can lead to heap corruption. Exploitation requires the attacker to control b...

RHSA-2026:0341 Red Hat Security Advisory: gcc-toolset-14-binutils security update

Bulletin has no description...

MiracleLinux 3 : tar-1.15.1-23.0.1.AXS3.2 (AXSA:2010-148:01)

The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2010-148:01 advisory. The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be...

DLA-4437-1 gnupg2 - security update

Bulletin has no description...

PT-2026-2957

Name of the Vulnerable Software and Affected Versions GNU C Library versions 2.30 through 2.42 Description Providing an excessively large alignment value to the memalign family of functions – including memalign, posix memalign, aligned alloc, valloc, and pvalloc – within the GNU C Library can lea...

GNU C Library 安全漏洞

The GNU C Library is an open source, free C language compiler from the GNU community released under the LGPL license. A security vulnerability exists in the GNU C Library versions 2.30 through 2.42, which stems from the fact that passing too large an alignment value to the memalign family of...