Описание
In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
| Релиз | Статус | Примечание |
|---|---|---|
| esm-infra-legacy/trusty | released | 1.4.16-1ubuntu2.6+esm2 |
| esm-infra/xenial | released | 1.4.20-1ubuntu3.3+esm3 |
| upstream | ignored | EOL |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | pending | 2.4.8-4ubuntu2 |
| esm-infra/bionic | released | 2.2.4-1ubuntu1.6+esm2 |
| esm-infra/focal | released | 2.2.19-3ubuntu2.5+esm1 |
| esm-infra/xenial | released | 2.1.11-6ubuntu2.1+esm3 |
| jammy | released | 2.2.27-3ubuntu2.5 |
| noble | released | 2.4.4-2ubuntu17.4 |
| plucky | released | 2.4.4-2ubuntu23.2 |
| questing | released | 2.4.8-2ubuntu2.1 |
| upstream | released | 2.4.8-5 |
Показывать по
Ссылки на источники
EPSS
7.8 High
CVSS3
Связанные уязвимости
In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments ...
In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input.
Уязвимость функции armor_filter() программы для шифрования информации и создания электронных цифровых подписей GnuPG, позволяющая нарушителю выполнить произвольный код
EPSS
7.8 High
CVSS3