7.8
CVE-2020-25125
- EPSS 1.28%
- Veröffentlicht 03.09.2020 18:15:15
- Zuletzt bearbeitet 21.11.2024 05:17:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
GnuPG 2.2.21 and 2.2.22 (and Gpg4win 3.1.12) has an array overflow, leading to a crash or possibly unspecified other impact, when a victim imports an attacker's OpenPGP key, and this key has AEAD preferences. The overflow is caused by a g10/key-check.c error. NOTE: GnuPG 2.3.x is unaffected. GnuPG 2.2.23 is a fixed version.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.28% | 0.663 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
http://www.openwall.com/lists/oss-security/2020/09/03/4
http://www.openwall.com/lists/oss-security/2020/09/03/5
https://bugzilla.opensuse.org/show_bug.cgi?id=1176034
https://dev.gnupg.org/T5050
https://dev.gnupg.org/rG8ec9573e57866dda5efb4677d4454161517484bc
https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000448.html