In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HGnupg
APPGnupg2.5.13 – 2.5.17 (bez)Gpg4win
APPGpg4Win5.0.0 – 5.0.1 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
References
Related vulnerabilities
CVE-2022-3515CRITICAL9.8ten sam produkt
A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnera...
CVE-2026-24881HIGH8.1ten sam produkt
In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key...
CVE-2025-68973HIGH7.8ten sam produkt
In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intend...
CVE-2020-25125HIGH7.8ten sam produkt
GnuPG 2.2.21 and 2.2.22 (and Gpg4win 3.1.12) has an array overflow, leading to a crash or possibly unspecified...
CVE-2019-14855HIGH7.5ten sam produkt
A flaw was found in the way certificate signatures could be forged using collisions found in the SHA-1 algorit...