Published: 03/09/2020 Updated: 11/09/2020

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

GnuPG 2.2.21 and 2.2.22 (and Gpg4win 3.1.12) has an array overflow, leading to a crash or possibly unspecified other impact, when a victim imports an attacker's OpenPGP key, and this key has AEAD preferences. The overflow is caused by a g10/key-check.c error. NOTE: GnuPG 2.3.x is unaffected. GnuPG 2.2.23 is a fixed version.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnupg gnupg 2.2.21
gnupg gnupg 2.2.22
gpg4win gpg4win 3.1.12

Importing an OpenPGP key having a preference list for AEAD algorithms will lead to an array overflow and thus often to a crash or other undefined behaviour Importing an arbitrary key can often easily be triggered by an attacker and thus triggering this bug Exploiting the bug aside from crashes is not trivial but likely possible for a dedicated ...

CWE-120 https://bugzilla.opensuse.org/show_bug.cgi?id=1176034 https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000448.html https://dev.gnupg.org/T5050 https://dev.gnupg.org/rG8ec9573e57866dda5efb4677d4454161517484bc http://www.openwall.com/lists/oss-security/2020/09/03/5 http://www.openwall.com/lists/oss-security/2020/09/03/4 https://nvd.nist.gov https://security.archlinux.org/CVE-2020-25125

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-25125

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect