[ALSA-2026:2719] Important: gnupg2 security update
Type:
security
Severity:
important
Release date:
2026-02-18
Description:
The GNU Privacy Guard (GnuPG or GPG) is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix(es): * GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution (CVE-2026-24882) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 gnupg2-smime-2.4.5-4.el10_1.aarch64.rpm 6a32f56e2f4f5c58e6a8e0501c7d69336c01fd91ea651b0f6fc03058418e3199
aarch64 gnupg2-2.4.5-4.el10_1.aarch64.rpm 99de55f8627eb06a495c4e8e37815596cf1219c525c9d43c611bf5a8e08a849c
ppc64le gnupg2-smime-2.4.5-4.el10_1.ppc64le.rpm 4d6b045602953b0c82a13ffc58f5e7750f55d57f9431533a10581e8345fbffc3
ppc64le gnupg2-2.4.5-4.el10_1.ppc64le.rpm eb8ffd4cf4e76e43ecd447b4163bd7079aeac1d0a27925a717b858c8bd67cdec
s390x gnupg2-smime-2.4.5-4.el10_1.s390x.rpm 7126ef9317401e5510227e2dd1b5066b03f3a59efee8866b4596af2b61d308f8
s390x gnupg2-2.4.5-4.el10_1.s390x.rpm e7edd076f2739fbf259f1d4259c161147b35ebf2ae399c33d5620622551a6ce8
x86_64 gnupg2-2.4.5-4.el10_1.x86_64.rpm 8b20ad2dd0f833a1eb3971df37a0f7aacf3c9a6613f0ccdd9ccfc96afd6b1778
x86_64 gnupg2-smime-2.4.5-4.el10_1.x86_64.rpm bed155dc2a01eb2d9357b019deac54545d21d99fdb463fa67b7fe536cf868c57
x86_64_v2 gnupg2-smime-2.4.5-4.el10_1.x86_64_v2.rpm 8e60fedc6dffa644842696826204b6354a4264c656e22853032de7821dbe7c0a
x86_64_v2 gnupg2-2.4.5-4.el10_1.x86_64_v2.rpm 95ea656845e0d0a36483e89dfcec17e036968ee1d6c7216ee41240336f09c18b
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.