Уязвимость CVE-2025-68972

Релиз	Статус	Примечание
devel	deferred
esm-infra/bionic	deferred
esm-infra/focal	deferred
esm-infra/xenial	deferred
jammy	deferred
noble	deferred
plucky	ignored	end of life, was deferred [2026-01-29]
questing	deferred
upstream	needs-triage

CVE-2025-68972

CVSS3: 5.9

redhat

3 месяца назад

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

CVE-2025-68972

CVSS3: 5.9

nvd

3 месяца назад

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

CVE-2025-68972

CVSS3: 5.9

msrc

3 месяца назад

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

CVE-2025-68972

CVSS3: 5.9

debian

3 месяца назад

In GnuPG through 2.4.8, if a signed message has \f at the end of a pla ...

ROS-20260327-73-0004

CVSS3: 4.7

redos

3 дня назад

Уязвимость gnupg2

exploitDog

CVE-2025-68972

Описание

Ссылки на источники

Связанные уязвимости

CVE-2025-68972

Описание

Пакет gnupg2

Ссылки на источники

Связанные уязвимости