[ALSA-2026:0719] Important: gnupg2 security update
Type:
security
Severity:
important
Release date:
2026-01-16
Description:
The GNU Privacy Guard (GnuPG or GPG) is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fix(es): * GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write (CVE-2025-68973) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 gnupg2-2.3.3-5.el9_7.aarch64.rpm 20a5ac8bbf25e2710314e2715955b4d2c103a5f772f5b2044cd0103391059f7c
aarch64 gnupg2-smime-2.3.3-5.el9_7.aarch64.rpm 2affc6d22137a5d75d00e3c7ecee4f29ca11561653d3438b66d588f479d43ccc
ppc64le gnupg2-smime-2.3.3-5.el9_7.ppc64le.rpm 86d8ec106e15f92ff4d6996d086d07136a82da60849aec980b4c9475d47d0322
ppc64le gnupg2-2.3.3-5.el9_7.ppc64le.rpm a1e67bf9993a94354e1791967c27d2f818b2e4dccb1a4bceb159010d1104230b
s390x gnupg2-2.3.3-5.el9_7.s390x.rpm 6e8228382ccbabf6d3eecaad9804e11a3f7485fa35b48d492849dd4ec18a12a5
s390x gnupg2-smime-2.3.3-5.el9_7.s390x.rpm c2b485d5a1bc174db7852f78b3d236dc42c6e515c15b41c86fa51e62706e6768
x86_64 gnupg2-smime-2.3.3-5.el9_7.x86_64.rpm 83a6ecd66a67365c0c4a335b7f0bb676d4a62b2d2d29f2a279ef3e70c101a703
x86_64 gnupg2-2.3.3-5.el9_7.x86_64.rpm fe27a1d9d51eff193083ef9028c9dfcfa5104e4bb772b31600bf3b03e91cca0f
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.