Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the pgppubdecryptbytea, which missing a safeguard for the session key length read from the message data, that can be given in input of pgppubdecryptbytea. An attacker can execute arbitrary code as the...