CVE-2025-68972 | GnuPG up to 2.4.8 Signed Message signature verification (EUVD-2025-205487)

Inserito da Angelo Barbosa | Dic 28, 2025 | CVE

A vulnerability classified as problematic has been found in GnuPG up to 2.4.8. Affected by this vulnerability is an unknown functionality of the component Signed Message Handler. Performing manipulation results in improper verification of cryptographic signature.

This vulnerability is reported as CVE-2025-68972. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-68972 | GnuPG up to 2.4.8 Signed Message signature verification (EUVD-2025-205487)

Post correlati

CVE-2022-50638 | Linux Kernel up to 6.1.3 ext4 fs/ext4/extents_status.c swap_inode_boot_loader initialization

CVE-2024-50507 | Daniel Schmitzer DS.DownloadList Plugin up to 1.3 on WordPress deserialization

CVE-2025-10920 | GIMP ICNS File Parser out-of-bounds write

CVE-2023-6937 | wolfSSL up to 5.6.4 TLS Record information disclosure