Vulnerabilities > Gnupg > Gnupg > 2.3.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-12 | CVE-2022-3515 | A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. | 9.8 |
2022-07-01 | CVE-2022-34903 | Injection vulnerability in multiple products GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line. | 6.5 |