| Bug | Description |
|---|
| CVE-2022-34903 | GnuPG through 2.3.6, in unusual situations where an attacker possesses ... |
| CVE-2020-25125 | GnuPG 2.2.21 and 2.2.22 (and Gpg4win 3.1.12) has an array overflow, le ... |
| CVE-2019-14855 | A flaw was found in the way certificate signatures could be forged usi ... |
| CVE-2018-1000858 | GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery (CS ... |
| CVE-2018-12020 | mainproc.c in GnuPG before 2.2.8 mishandles the original filename duri ... |
| CVE-2018-9234 | GnuPG 2.2.4 and 2.2.5 does not enforce a configuration in which key ce ... |
| CVE-2017-7526 | libgcrypt before version 1.7.8 is vulnerable to a cache side-channel a ... |
| CVE-2016-6313 | The mixing functions in the random number generator in Libgcrypt befor ... |
| CVE-2015-1607 | kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2 ... |
| CVE-2015-1606 | The keyring DB in GnuPG before 2.1.2 does not properly handle invalid ... |
| CVE-2014-9087 | Integer underflow in the ksba_oid_to_str function in Libksba before 1. ... |
| CVE-2014-4617 | The do_uncompress function in g10/compress.c in GnuPG 1.x before 1.4.1 ... |
| CVE-2013-4402 | The compressed packet parser in GnuPG 1.4.x before 1.4.15 and 2.0.x be ... |
| CVE-2013-4351 | GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bi ... |
| CVE-2012-6085 | The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 a ... |
| CVE-2010-2547 | Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2. ... |
| CVE-2008-1530 | GnuPG (gpg) 1.4.8 and 2.0.8 allows remote attackers to cause a denial ... |
| CVE-2007-1263 | GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the comm ... |
| CVE-2006-6235 | A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x ... |
| CVE-2006-6169 | Heap-based buffer overflow in the ask_outfile_name function in openfil ... |
| CVE-2006-3746 | Integer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote a ... |
| CVE-2006-3082 | parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, ... |
| CVE-2006-0455 | gpgv in GnuPG before 1.4.2.1, when using unattended signature verifica ... |
| CVE-2006-0049 | gpg in GnuPG before 1.4.2.2 does not properly verify non-detached sign ... |
| CVE-2005-2023 | The send_pinentry_environment function in asshelp.c in gpg2 on SUSE Li ... |