[ALSA-2026:0697] Important: gnupg2 security update
Type:
security
Severity:
important
Release date:
2026-01-16
Description:
The GNU Privacy Guard (GnuPG or GPG) is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix(es): * GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write (CVE-2025-68973) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 gnupg2-2.4.5-3.el10_1.aarch64.rpm 7d62a266e58ef572937cf8c4ed42cbcb8e13e5deccb8e7900dccc95600517214
aarch64 gnupg2-smime-2.4.5-3.el10_1.aarch64.rpm ec8b947b041f12d522d68ce9ce9445a959e3408ee3a0079154c9f0d3c42462bd
ppc64le gnupg2-2.4.5-3.el10_1.ppc64le.rpm 6a4bee0eb83447f0adadca30d421c3a80f213d0250ffcb740df228b699745032
ppc64le gnupg2-smime-2.4.5-3.el10_1.ppc64le.rpm 7cdcd3e981ae7fa0f014153e6e8885989e9ff971ae6add8d7873a81133c41064
s390x gnupg2-2.4.5-3.el10_1.s390x.rpm 00d709dd5ceb5695f7a809d8d27e14e8fe17bea76e25cd2399151a662c4ca0cf
s390x gnupg2-smime-2.4.5-3.el10_1.s390x.rpm 733841fa64f92931b7863a0df0bb5ac7b2bf03234ec27a03943ae1c26597b596
x86_64 gnupg2-2.4.5-3.el10_1.x86_64.rpm f034a63411092fa8806e3433da892874064677c8764c9bfef0283f7b80d22e12
x86_64 gnupg2-smime-2.4.5-3.el10_1.x86_64.rpm fea1ac9b492b1f22edb4aa963b26fe9c12107070b05845ee1d8b01077cfe7e34
x86_64_v2 gnupg2-smime-2.4.5-3.el10_1.x86_64_v2.rpm 9b6a25bdb34b68561f3b4a87e47c9390a1bbcb4d03049025dd496e2a364501b6
x86_64_v2 gnupg2-2.4.5-3.el10_1.x86_64_v2.rpm bff8369972ea4490c9f6a5746d3e6fd293693f55789f61b61df245806988de05
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.