ELSA-2026-0728

Опубликовано: 15 янв. 2026

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2026-0728: gnupg2 security update (IMPORTANT)

[2.2.20-4]

Fix CVE-2025-68973 (gpg.fail/memcpy)

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

gnupg2

2.2.20-4.el8_10

gnupg2-smime

2.2.20-4.el8_10

Oracle Linux x86_64

gnupg2

2.2.20-4.el8_10

gnupg2-smime

2.2.20-4.el8_10

Связанные CVE

CVE-2025-68973

Ссылки на источники

Связанные уязвимости

CVE-2025-68973

CVSS3: 7.8

ubuntu

около 1 месяца назад

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

CVE-2025-68973

CVSS3: 7.8

nvd

около 1 месяца назад

CVE-2025-68973

CVSS3: 7.8

msrc

около 1 месяца назад

In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

CVE-2025-68973

CVSS3: 7.8

debian

около 1 месяца назад

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments ...

openSUSE-SU-2026:20029-1

suse-cvrf

25 дней назад

Security update for gpg2