| Bug | Description |
|---|
| TEMP-0107374-DF37E7 | gnupg: inproper flagging of signatures as being local |
| CVE-2018-1000858 | GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery (CS ... |
| CVE-2018-12020 | mainproc.c in GnuPG before 2.2.8 mishandles the original filename duri ... |
| CVE-2017-7526 | libgcrypt before version 1.7.8 is vulnerable to a cache side-channel a ... |
| CVE-2016-6313 | The mixing functions in the random number generator in Libgcrypt befor ... |
| CVE-2015-1607 | kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2 ... |
| CVE-2015-1606 | The keyring DB in GnuPG before 2.1.2 does not properly handle invalid ... |
| CVE-2015-0837 | The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.1 ... |
| CVE-2014-5270 | Libgcrypt before 1.5.4, as used in GnuPG and other products, does not ... |
| CVE-2014-4617 | The do_uncompress function in g10/compress.c in GnuPG 1.x before 1.4.1 ... |
| CVE-2014-3591 | Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciph ... |
| CVE-2013-4576 | GnuPG 1.x before 1.4.16 generates RSA keys using sequences of introduc ... |
| CVE-2013-4402 | The compressed packet parser in GnuPG 1.4.x before 1.4.15 and 2.0.x be ... |
| CVE-2013-4351 | GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bi ... |
| CVE-2013-4242 | GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x ... |
| CVE-2012-6085 | The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 a ... |
| CVE-2008-1530 | GnuPG (gpg) 1.4.8 and 2.0.8 allows remote attackers to cause a denial ... |
| CVE-2007-1263 | GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the comm ... |
| CVE-2006-6235 | A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x ... |
| CVE-2006-6169 | Heap-based buffer overflow in the ask_outfile_name function in openfil ... |
| CVE-2006-3746 | Integer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote a ... |
| CVE-2006-3082 | parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, ... |
| CVE-2006-0455 | gpgv in GnuPG before 1.4.2.1, when using unattended signature verifica ... |
| CVE-2006-0049 | gpg in GnuPG before 1.4.2.2 does not properly verify non-detached sign ... |
| CVE-2005-0366 | The integrity check feature in OpenPGP, when handling a message that w ... |
| CVE-2003-0971 | GnuPG (GPG) 1.0.2, and other versions up to 1.2.3, creates ElGamal typ ... |
| CVE-2003-0255 | The key validation code in GnuPG before 1.2.2 does not properly determ ... |