Search for packages
| purl | pkg:alpm/archlinux/gnupg@2.2.36-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-ey5p-3qp3-aaam | GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line. |
CVE-2022-34903
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:44:02.141724+00:00 | Arch Linux Importer | Fixing | VCID-ey5p-3qp3-aaam | https://security.archlinux.org/AVG-2776 | 36.0.0 |
| 2024-09-18T01:59:10.374302+00:00 | Arch Linux Importer | Fixing | VCID-ey5p-3qp3-aaam | https://security.archlinux.org/AVG-2776 | 34.0.1 |
| 2024-01-03T22:25:28.141391+00:00 | Arch Linux Importer | Fixing | VCID-ey5p-3qp3-aaam | https://security.archlinux.org/AVG-2776 | 34.0.0rc1 |