GHSA-7246-cvp4-g68w

Опубликовано: 27 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 3.7

Описание

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

Ссылки

EPSS

Процентиль: 2%

0.00014

Низкий

3.7 Low

CVSS3

CVE ID

CVE-2026-24883

Дефекты

CWE-476

Связанные уязвимости

CVE-2026-24883

CVSS3: 3.7

ubuntu

11 дней назад

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

CVE-2026-24883

CVSS3: 3.7

nvd

11 дней назад

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

CVE-2026-24883

CVSS3: 3.7

debian

11 дней назад

In GnuPG before 2.5.17, a long signature packet length causes parse_si ...

EPSS

Процентиль: 2%

0.00014

Низкий

3.7 Low

CVSS3

CVE ID

CVE-2026-24883

Дефекты

CWE-476