Описание
Security update for gpg2
This update for gpg2 fixes the following issues:
- CVE-2025-68973: Fix possible memory corruption in the armor parser (gpg.fail/memcpy)(bsc#1255715).
- Avoid potential downgrade to SHA1 in 3rd party key signatures (gpg.fail/sha1) (bsc#1256246).
- Error out on unverified output for non-detached signatures (gpg.fail/detached) (bsc#1256244).
- Fix a memory leak in gpg2 agent (bsc#1256243).
- Fix Cleartext Signature Forgery in the NotDashEscaped header implementation in GnuPG (gpg.fail/notdash) (bsc#1256390).
Список пакетов
Image SLES15-SP6
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-Azure-3P
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-BYOS
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-BYOS-Azure
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-BYOS-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-Hardened-BYOS
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-Hardened-BYOS-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Azure-3P
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Hardened
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Hardened-BYOS
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Hardened-EC2
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAP-Hardened-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAPCAL
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-SAPCAL-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-Azure-3P
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-Azure-Basic
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-Azure-Standard
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-BYOS-Azure
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-BYOS-EC2
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-BYOS-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-HPC-Azure
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-HPC-BYOS-EC2
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-HPC-BYOS-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-Hardened-BYOS-Azure
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-Hardened-BYOS-EC2
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-Hardened-BYOS-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-SAP-Azure
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-SAP-Azure-3P
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-SAP-EC2
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-SAP-Hardened-Azure
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-SAP-Hardened-GCE
gpg2-2.4.4-150600.3.12.1
Image SLES15-SP7-SAPCAL-Azure
gpg2-2.4.4-150600.3.12.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
dirmngr-2.4.4-150600.3.12.1
gpg2-2.4.4-150600.3.12.1
gpg2-lang-2.4.4-150600.3.12.1
SUSE Linux Enterprise Server 15 SP6-LTSS
dirmngr-2.4.4-150600.3.12.1
gpg2-2.4.4-150600.3.12.1
gpg2-lang-2.4.4-150600.3.12.1
SUSE Linux Enterprise Server for SAP Applications 15 SP6
dirmngr-2.4.4-150600.3.12.1
gpg2-2.4.4-150600.3.12.1
gpg2-lang-2.4.4-150600.3.12.1
openSUSE Leap 15.6
dirmngr-2.4.4-150600.3.12.1
gpg2-2.4.4-150600.3.12.1
gpg2-lang-2.4.4-150600.3.12.1
gpg2-tpm-2.4.4-150600.3.12.1
Ссылки
- Link for SUSE-SU-2026:0215-1
- E-Mail link for SUSE-SU-2026:0215-1
- SUSE Security Ratings
- SUSE Bug 1255715
- SUSE Bug 1256243
- SUSE Bug 1256244
- SUSE Bug 1256246
- SUSE Bug 1256390
- SUSE CVE CVE-2025-68973 page
Описание
In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
Затронутые продукты
Image SLES15-SP6-Azure-3P:gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-BYOS-Azure:gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-BYOS-GCE:gpg2-2.4.4-150600.3.12.1
Image SLES15-SP6-BYOS:gpg2-2.4.4-150600.3.12.1
Ссылки
- CVE-2025-68973
- SUSE Bug 1255715