Search for packages
| purl | pkg:alpm/archlinux/gnupg@2.2.35-2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-ey5p-3qp3-aaam
Aliases: CVE-2022-34903 |
GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:44:02.136495+00:00 | Arch Linux Importer | Affected by | VCID-ey5p-3qp3-aaam | https://security.archlinux.org/AVG-2776 | 36.0.0 |
| 2024-09-18T01:59:10.369508+00:00 | Arch Linux Importer | Affected by | VCID-ey5p-3qp3-aaam | https://security.archlinux.org/AVG-2776 | 34.0.1 |
| 2024-01-03T22:25:28.136674+00:00 | Arch Linux Importer | Affected by | VCID-ey5p-3qp3-aaam | https://security.archlinux.org/AVG-2776 | 34.0.0rc1 |