CVE-2025-68973
HIGHDescription
In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
Is your site exposed to CVE-2025-68973?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| gnupg | gnupg |
References
Advisories & Patches
Other References
Frequently Asked Questions
What is CVE-2025-68973? +
How severe is CVE-2025-68973? +
What products are affected by CVE-2025-68973? +
How do I check if I'm vulnerable to CVE-2025-68973? +
Related Vulnerabilities
Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt.
In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can …
Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled …
In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a …