Sign In

CVE-2026-24883

ADVISORY - nist

Summary

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-476

NULL Pointer Dereference

ADVISORY - redhat

CWE-476

NULL Pointer Dereference

Impacted images

Advisories
Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in