CVE-2025-68973

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

Published Dec 29, 2025

https://github.com/gpg/gnupg/commit/115d138ba599328005c5321c0ef9f00355838ca9 https://github.com/CVEProject/cvelistV5/blob/main/cves/2025/68xxx/CVE-2025-68973.json

CVSS ScoreHigh

7.0

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2025-68973

In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

Published Dec 29, 2025

https://github.com/gpg/gnupg/commit/115d138ba599328005c5321c0ef9f00355838ca9 https://github.com/CVEProject/cvelistV5/blob/main/cves/2025/68xxx/CVE-2025-68973.json

CVSS ScoreHigh

7.0


rpm	gnupg2	2.0.14-4.el6
rpm	gnupg2	2.0.14-6.el6_4
rpm	gnupg2	2.0.14-8.el6
rpm	gnupg2	2.0.14-9.el6_10
rpm	gnupg2	2.0.22-3.el7
rpm	gnupg2	2.0.22-4.el7
rpm	gnupg2	2.0.22-5.el7_5
rpm	gnupg2	2.2.20-2.el8
rpm	gnupg2	2.2.20-3.el8_6
rpm	gnupg2	2.2.20-4.el8_10
rpm	gnupg2	2.2.9-1.el8
rpm	gnupg2	2.3.3-1.el9
rpm	gnupg2	2.3.3-2.el9_0
rpm	gnupg2	2.3.3-4.el9
rpm	gnupg2	2.3.3-5.el9_7
rpm	gnupg2	2.4.5-1.el10
rpm	gnupg2	2.4.5-2.el10
rpm	gnupg2	2.4.5-3.el10_1
rpm	gnupg2	2.4.5-4.el10_1
rpm	gnupg2-smime	2.0.14-4.el6
rpm	gnupg2-smime	2.0.14-6.el6_4
rpm	gnupg2-smime	2.0.14-8.el6
rpm	gnupg2-smime	2.0.14-9.el6_10
rpm	gnupg2-smime	2.0.22-3.el7
rpm	gnupg2-smime	2.0.22-4.el7
rpm	gnupg2-smime	2.0.22-5.el7_5
rpm	gnupg2-smime	2.2.20-2.el8
rpm	gnupg2-smime	2.2.20-3.el8_6
rpm	gnupg2-smime	2.2.20-4.el8_10
rpm	gnupg2-smime	2.2.9-1.el8
rpm	gnupg2-smime	2.3.3-1.el9
rpm	gnupg2-smime	2.3.3-2.el9_0
rpm	gnupg2-smime	2.3.3-4.el9
rpm	gnupg2-smime	2.3.3-5.el9_7
rpm	gnupg2-smime	2.4.5-1.el10
rpm	gnupg2-smime	2.4.5-2.el10
rpm	gnupg2-smime	2.4.5-3.el10_1
rpm	gnupg2-smime	2.4.5-4.el10_1

Ecosystem	Package	Version


rpm	gnupg2	2.0.14-4.el6
rpm	gnupg2	2.0.14-6.el6_4
rpm	gnupg2	2.0.14-8.el6
rpm	gnupg2	2.0.14-9.el6_10
rpm	gnupg2	2.0.22-3.el7
rpm	gnupg2	2.0.22-4.el7
rpm	gnupg2	2.0.22-5.el7_5
rpm	gnupg2	2.2.20-2.el8
rpm	gnupg2	2.2.20-3.el8_6
rpm	gnupg2	2.2.20-4.el8_10
rpm	gnupg2	2.2.9-1.el8
rpm	gnupg2	2.3.3-1.el9
rpm	gnupg2	2.3.3-2.el9_0
rpm	gnupg2	2.3.3-4.el9
rpm	gnupg2	2.3.3-5.el9_7
rpm	gnupg2	2.4.5-1.el10
rpm	gnupg2	2.4.5-2.el10
rpm	gnupg2	2.4.5-3.el10_1
rpm	gnupg2	2.4.5-4.el10_1
rpm	gnupg2-smime	2.0.14-4.el6
rpm	gnupg2-smime	2.0.14-6.el6_4
rpm	gnupg2-smime	2.0.14-8.el6
rpm	gnupg2-smime	2.0.14-9.el6_10
rpm	gnupg2-smime	2.0.22-3.el7
rpm	gnupg2-smime	2.0.22-4.el7
rpm	gnupg2-smime	2.0.22-5.el7_5
rpm	gnupg2-smime	2.2.20-2.el8
rpm	gnupg2-smime	2.2.20-3.el8_6
rpm	gnupg2-smime	2.2.20-4.el8_10
rpm	gnupg2-smime	2.2.9-1.el8
rpm	gnupg2-smime	2.3.3-1.el9
rpm	gnupg2-smime	2.3.3-2.el9_0
rpm	gnupg2-smime	2.3.3-4.el9
rpm	gnupg2-smime	2.3.3-5.el9_7
rpm	gnupg2-smime	2.4.5-1.el10
rpm	gnupg2-smime	2.4.5-2.el10
rpm	gnupg2-smime	2.4.5-3.el10_1
rpm	gnupg2-smime	2.4.5-4.el10_1

Find vulnerabilities. Fix fast with AI.

CVE-2025-68973

CVE-2025-68973