VulnerableCode Package Details - pkg:deb/debian/gnupg2@2.0.14-2%2Bsqueeze2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/gnupg2@2.0.14-2%2Bsqueeze2

Essentials
History (57)

purl	pkg:deb/debian/gnupg2@2.0.14-2%2Bsqueeze2

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (12)

Vulnerability	Summary	Fixed by
VCID-3jt3-2y11-yuc5 Aliases: CVE-2015-1606	security update	2.0.26-6 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9cm4-mu3q-2yey Aliases: CVE-2018-12020	security update	2.0.26-6+deb8u2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.1.18-8~deb9u4 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.2.12-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9jj4-5uem-kkbs Aliases: CVE-2022-34903	Multiple vulnerabilities have been discovered in GnuPG, the worst of which could lead to signature spoofing.	2.2.12-1+deb10u2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.2.27-2+deb11u2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ba35-1hmw-m3hg Aliases: CVE-2018-9234	GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys	2.2.12-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-mhw6-1d6f-pbcp Aliases: CVE-2014-4617	A vulnerability in GnuPG can lead to a Denial of Service condition.	2.0.19-2+deb7u2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.0.25-1~bpo70+1 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-nfzs-w4pe-bubj Aliases: CVE-2015-1607	gnupg2: memcpy with overlapping ranges (keybox_search.c)	2.0.26-6 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ng6k-ru7r-9kdp Aliases: CVE-2025-68973	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write	2.2.40-1.1+deb12u2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-qapz-hmnm-x7dd Aliases: CVE-2018-1000858	gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service	2.2.12-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-rqt5-xvxx-47h6 Aliases: CVE-2019-14855	gnupg2: OpenPGP Key Certification Forgeries with SHA-1	2.2.27-2+deb11u2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-st4p-dn2v-dbg3 Aliases: CVE-2012-6085	Multiple vulnerabilities have been discovered in GnuPG and Libgcrypt, which may result in execution of arbitrary code, Denial of Service, or the disclosure of private keys.	2.0.19-2+deb7u2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-vmyv-5rvk-akh3 Aliases: CVE-2013-4351	Multiple vulnerabilities have been discovered in GnuPG and Libgcrypt, which may result in execution of arbitrary code, Denial of Service, or the disclosure of private keys.	2.0.19-2+deb7u2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.0.25-1~bpo70+1 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zytz-gsnc-yqh9 Aliases: CVE-2013-4402	Multiple vulnerabilities have been discovered in GnuPG and Libgcrypt, which may result in execution of arbitrary code, Denial of Service, or the disclosure of private keys.	2.0.19-2+deb7u2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.0.25-1~bpo70+1 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-n34c-87th-d7gz	The GPGSM utility included in GnuPG contains a use-after-free vulnerability that may allow an unauthenticated remote attacker to execute arbitrary code.	CVE-2010-2547

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T01:09:14.918003+00:00	Debian Oval Importer	Affected by	VCID-ba35-1hmw-m3hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T01:06:11.693344+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:47:38.997682+00:00	Debian Oval Importer	Affected by	VCID-3jt3-2y11-yuc5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:19:10.924521+00:00	Debian Oval Importer	Affected by	VCID-vmyv-5rvk-akh3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:33:51.836122+00:00	Debian Oval Importer	Affected by	VCID-rqt5-xvxx-47h6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:02:18.063707+00:00	Debian Oval Importer	Affected by	VCID-mhw6-1d6f-pbcp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:48:40.363831+00:00	Debian Oval Importer	Affected by	VCID-nfzs-w4pe-bubj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:12:32.098039+00:00	Debian Oval Importer	Fixing	VCID-n34c-87th-d7gz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:25:45.086314+00:00	Debian Oval Importer	Affected by	VCID-qapz-hmnm-x7dd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:48:26.506555+00:00	Debian Oval Importer	Affected by	VCID-zytz-gsnc-yqh9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:37:52.228207+00:00	Debian Oval Importer	Affected by	VCID-9jj4-5uem-kkbs	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:12:37.948629+00:00	Debian Oval Importer	Affected by	VCID-ng6k-ru7r-9kdp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:49:04.667769+00:00	Debian Oval Importer	Affected by	VCID-st4p-dn2v-dbg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:08:47.428699+00:00	Debian Oval Importer	Affected by	VCID-9jj4-5uem-kkbs	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:37:42.760785+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T13:53:50.899048+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:15:51.551030+00:00	Debian Oval Importer	Affected by	VCID-mhw6-1d6f-pbcp	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-15T13:11:17.178275+00:00	Debian Oval Importer	Affected by	VCID-vmyv-5rvk-akh3	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-15T13:11:04.589847+00:00	Debian Oval Importer	Affected by	VCID-zytz-gsnc-yqh9	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-12T00:41:09.443137+00:00	Debian Oval Importer	Affected by	VCID-ba35-1hmw-m3hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:38:11.045283+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:20:09.826276+00:00	Debian Oval Importer	Affected by	VCID-3jt3-2y11-yuc5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:52:48.855952+00:00	Debian Oval Importer	Affected by	VCID-vmyv-5rvk-akh3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:08:54.856740+00:00	Debian Oval Importer	Affected by	VCID-rqt5-xvxx-47h6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:42:27.774690+00:00	Debian Oval Importer	Affected by	VCID-mhw6-1d6f-pbcp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:29:31.774570+00:00	Debian Oval Importer	Affected by	VCID-nfzs-w4pe-bubj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:54:19.149664+00:00	Debian Oval Importer	Fixing	VCID-n34c-87th-d7gz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:08:49.453743+00:00	Debian Oval Importer	Affected by	VCID-qapz-hmnm-x7dd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:33:05.366052+00:00	Debian Oval Importer	Affected by	VCID-zytz-gsnc-yqh9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:24:05.038076+00:00	Debian Oval Importer	Affected by	VCID-9jj4-5uem-kkbs	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:59:14.973147+00:00	Debian Oval Importer	Affected by	VCID-ng6k-ru7r-9kdp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:35:52.797259+00:00	Debian Oval Importer	Affected by	VCID-st4p-dn2v-dbg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:57:04.521045+00:00	Debian Oval Importer	Affected by	VCID-9jj4-5uem-kkbs	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:25:59.845732+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T13:42:31.837893+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T13:04:35.740404+00:00	Debian Oval Importer	Affected by	VCID-mhw6-1d6f-pbcp	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-11T13:00:01.078823+00:00	Debian Oval Importer	Affected by	VCID-vmyv-5rvk-akh3	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-11T12:59:48.429441+00:00	Debian Oval Importer	Affected by	VCID-zytz-gsnc-yqh9	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-09T00:10:58.369269+00:00	Debian Oval Importer	Affected by	VCID-ba35-1hmw-m3hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-09T00:08:09.030830+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:50:57.380027+00:00	Debian Oval Importer	Affected by	VCID-3jt3-2y11-yuc5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:24:44.599315+00:00	Debian Oval Importer	Affected by	VCID-vmyv-5rvk-akh3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:42:36.555680+00:00	Debian Oval Importer	Affected by	VCID-rqt5-xvxx-47h6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:22:26.830032+00:00	Debian Oval Importer	Affected by	VCID-mhw6-1d6f-pbcp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:09:51.706800+00:00	Debian Oval Importer	Affected by	VCID-nfzs-w4pe-bubj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:36:23.575193+00:00	Debian Oval Importer	Fixing	VCID-n34c-87th-d7gz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:52:59.170423+00:00	Debian Oval Importer	Affected by	VCID-qapz-hmnm-x7dd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:18:16.509623+00:00	Debian Oval Importer	Affected by	VCID-zytz-gsnc-yqh9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:12:18.110166+00:00	Debian Oval Importer	Affected by	VCID-9jj4-5uem-kkbs	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:48:46.290450+00:00	Debian Oval Importer	Affected by	VCID-ng6k-ru7r-9kdp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:26:42.584641+00:00	Debian Oval Importer	Affected by	VCID-st4p-dn2v-dbg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:29:11.974644+00:00	Debian Oval Importer	Affected by	VCID-9jj4-5uem-kkbs	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T22:59:28.612964+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:18:04.051402+00:00	Debian Oval Importer	Affected by	VCID-9cm4-mu3q-2yey	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T21:39:39.730569+00:00	Debian Oval Importer	Affected by	VCID-mhw6-1d6f-pbcp	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-07T21:34:56.182505+00:00	Debian Oval Importer	Affected by	VCID-vmyv-5rvk-akh3	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-07T21:34:42.985927+00:00	Debian Oval Importer	Affected by	VCID-zytz-gsnc-yqh9	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0