Gnupg

Gnupg

35 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.7

CVE-2026-24883

  • EPSS 0.01%
  • Veröffentlicht 27.01.2026 18:43:18
  • Zuletzt bearbeitet 29.01.2026 16:31:35

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

8.4

CVE-2026-24882

  • EPSS 0.01%
  • Veröffentlicht 27.01.2026 18:40:18
  • Zuletzt bearbeitet 29.01.2026 16:31:35

In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys.

8.1

CVE-2026-24881

  • EPSS 0.08%
  • Veröffentlicht 27.01.2026 18:36:56
  • Zuletzt bearbeitet 29.01.2026 16:31:35

In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key can cause a stack-based buffer overflow in gpg-agent during PKDECRYPT--kem=CMS handling. This can easily be leveraged for denial of service...

7

CVE-2025-68973

  • EPSS 0.02%
  • Veröffentlicht 28.12.2025 16:19:11
  • Zuletzt bearbeitet 14.01.2026 19:16:46

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

4.7

CVE-2025-68972

  • EPSS 0.01%
  • Veröffentlicht 27.12.2025 22:52:30
  • Zuletzt bearbeitet 09.01.2026 20:08:47

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds ...

4.7

CVE-2025-30258

Exploit
  • EPSS 0.03%
  • Veröffentlicht 19.03.2025 00:00:00
  • Zuletzt bearbeitet 16.10.2025 16:53:07

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka ...

3.3

CVE-2022-3219

  • EPSS 0.02%
  • Veröffentlicht 23.02.2023 20:15:12
  • Zuletzt bearbeitet 12.03.2025 21:15:38

GnuPG can be made to spin on a relatively small input by (for example) crafting a public key with thousands of signatures attached, compressed down to just a few KB.

9.8

CVE-2022-3515

Exploit
  • EPSS 0.16%
  • Veröffentlicht 12.01.2023 15:15:10
  • Zuletzt bearbeitet 08.04.2025 16:15:19

A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, ...

6.5

CVE-2022-34903

Exploit
  • EPSS 2.4%
  • Veröffentlicht 01.07.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 07:10:24

GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.

7.8

CVE-2020-25125

Exploit
  • EPSS 0.33%
  • Veröffentlicht 03.09.2020 18:15:15
  • Zuletzt bearbeitet 21.11.2024 05:17:24

GnuPG 2.2.21 and 2.2.22 (and Gpg4win 3.1.12) has an array overflow, leading to a crash or possibly unspecified other impact, when a victim imports an attacker's OpenPGP key, and this key has AEAD preferences. The overflow is caused by a g10/key-check...