ALSA-2026:2719

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/10/ALSA-2026-2719.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:2719.json

JSON Data

https://api.test.osv.dev/v1/vulns/ALSA-2026:2719

Related

CVE-2026-24882

Published

2026-02-16T00:00:00Z

Modified

2026-02-25T00:02:34.191887Z

Summary

Important: gnupg2 security update

Details

The GNU Privacy Guard (GnuPG or GPG) is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards.

Security Fix(es):

GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution (CVE-2026-24882)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:10 / gnupg2

Package

Name: gnupg2
Purl: pkg:rpm/almalinux/gnupg2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.5-4.el10_1

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:2719.json"

AlmaLinux:10 / gnupg2-smime

Package

Name: gnupg2-smime
Purl: pkg:rpm/almalinux/gnupg2-smime

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.5-4.el10_1

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:2719.json"