VulnerableCode Package Details - pkg:ebuild/app-crypt/gnupg@2.0.16-r1

Search for packages

Package details: pkg:ebuild/app-crypt/gnupg@2.0.16-r1

Essentials
History (3)

purl	pkg:ebuild/app-crypt/gnupg@2.0.16-r1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-7kuc-9ej4-aaab	Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a certificate with a large number of Subject Alternate Names, which is not properly handled in a realloc operation when importing the certificate or verifying its signature.	CVE-2010-2547

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T12:46:11.687107+00:00	Gentoo Importer	Fixing	VCID-7kuc-9ej4-aaab	https://security.gentoo.org/glsa/201110-15	36.0.0
2024-09-18T07:40:56.089882+00:00	Gentoo Importer	Fixing	VCID-7kuc-9ej4-aaab	https://security.gentoo.org/glsa/201110-15	34.0.1
2024-01-04T01:46:48.054500+00:00	Gentoo Importer	Fixing	VCID-7kuc-9ej4-aaab	https://security.gentoo.org/glsa/201110-15	34.0.0rc1