Out-of-Bounds Write Vulnerability in GnuPG Affected by Armor Filter
CVE-2025-68973

7.8HIGH

Key Information:

Vendor: Gnupg
Status: Gnupg
Vendor: CVE Published:; 28 December 2025

What is CVE-2025-68973?

A vulnerability in GnuPG's armor_filter function can lead to an out-of-bounds write when processing crafted input. This occurs due to two inadvertent increments of an index variable, which can compromise memory integrity and stability. The flaw was identified in versions up to and including 2.4.8, signalling an urgent need for users to update their GnuPG installations to prevent potential exploitation.

Affected Version(s)

GnuPG 0 < 2.2.51

GnuPG 2.3.0 < 2.4.9

References

https://gpg.fail/memcpy

https://news.ycombinator.com/item?id=46403200

https://www.openwall.com/lists/oss-security/2025/12/28/5

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 28, 2025
Vulnerability Reserved
Dec 28, 2025

CVE-2025-68973 Data

JSON

Gnupg

What is CVE-2025-68973?

Affected Version(s)

References

CVSS V3.1

Timeline