CVE-2026-24883 in GnuPGinformación

Resumen

por MITRE • 2026-01-27

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

MITRE

Reservar

2026-01-27

Divulgación

2026-01-27

Moderación

aceptado

Artículo

VDB-343072

CPE

listo

EPSS

0.00447

KEV

no

Actividades

muy bajo

Fuentes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!