CVE-2026-24883 in GnuPG
Sumário
de MITRE • 27/01/2026
In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.