G

Gnupg Security Vulnerabilities (CVE)

Explore vulnerabilities and security advisories affecting Gnupg products.

2 known CVE vulnerabilities tracked

Critical
0
High
1
Medium
1
Low
0
None
0

Vulnerabilities By Year

2
2025

Products Affected

Gnupg 2

All Gnupg CVEs

Recent Highest Score Oldest
CVE-2025-68973
7.8 high

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

Gnupg Dec 28, 2025
CVE-2025-68972
5.9 medium

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed du

Gnupg Dec 27, 2025