CVE-2026-24882

Vulnerability

CVE-2026-24882

GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution

ecosystem: redhat:6, redhat:7, redhat:8, redhat:9, redhat:10

A flaw was found in GnuPG. This vulnerability, a stack-based buffer overflow, occurs in the `tpm2daemon` component when processing PKDECRYPT commands for cryptographic keys secured by a Trusted Platform Module (TPM). A local attacker could exploit this to execute unauthorized code, potentially gaining full control of the system, or disrupt its operation, leading to a denial of service.

References
severityI
Important

type: vendor

source: secalert@redhat.com

CVSS3.1
8.4HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AVLocal
ACLow
PRNone
UINone
SNot Changed
CHigh
IHigh
AHigh

source: secalert@redhat.com

 CWE
CWE-121

Stack-based Buffer Overflow

source: secalert@redhat.com

published: 2026-01-27 18:40:18

modified: 2026-01-28 06:13:54

Detection

redhat:10
CVE-2026-24882

redhat-vex

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-10:2f2e6eaf-40b2-9178-7687-8c20729a095c

redhat:6
CVE-2026-24882

redhat-vex

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-6-els:4e5832ca-37f6-ab04-e90c-f44c194c4327

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-6-extras-including-unpatched:4e5832ca-37f6-ab04-e90c-f44c194c4327

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-6-including-unpatched:4e5832ca-37f6-ab04-e90c-f44c194c4327

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-6-supplementary:4e5832ca-37f6-ab04-e90c-f44c194c4327

redhat:7
CVE-2026-24882

redhat-vex

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-7-extras-including-unpatched:a5d82b87-12e0-d8cf-fe19-bd383075b7a8

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-7-including-unpatched:a5d82b87-12e0-d8cf-fe19-bd383075b7a8

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-7-supplementary:a5d82b87-12e0-d8cf-fe19-bd383075b7a8

redhat:8
CVE-2026-24882

redhat-vex

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-8-including-unpatched:32f71210-26fe-0b66-c6ee-ea579b914049

redhat:9
CVE-2026-24882

redhat-vex

OR

unfixedAffected

 

gnupg2

package type: binary

type: version
unfixedAffected

 

gnupg2-smime

package type: binary

type: version
unfixedAffected

 

gnupg2

package type: source

type: version

tag: rhel-9-including-unpatched:414a5c6b-7229-12e8-4049-8e3b509f8f2a

Data Sources

  • RedHat Enterprise Linux CSAF VEX

    redhat-vex

VulsFutureVuls|GitHub Logo IconGitHub