Approved changes feed: RSS · Atom

cpe:2.3:a:gnupg:libgcrypt:1.9.0:*:*:*:*:*:*:*

part: a version: 1.9.0 update: *

VendorGnupg (cf567c2a-c134-5510-af9f-62e22a797e74)
ProductLibgcrypt (5ca46195-6599-5c5c-ab9c-5b3ac10f1932)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:deb/debian/libgcrypt20 purl2cpe 2026-06-01 10:12:44.027025
pkg:deb/ubuntu/libgcrypt20 purl2cpe 2026-06-01 10:12:44.027026
pkg:github/gpg/libgcrypt purl2cpe 2026-06-01 10:12:44.027027
pkg:gitlab/redhat/libgcrypt purl2cpe 2026-06-01 10:12:44.027029
pkg:gnu/libgcrypt purl2cpe 2026-06-01 10:12:44.027030
pkg:rpm/fedora/libgcrypt purl2cpe 2026-06-01 10:12:44.027031
pkg:rpm/opensuse/libgcrypt purl2cpe 2026-06-01 10:12:44.027033
pkg:rpm/opensuse/libgcrypt20 purl2cpe 2026-06-01 10:12:44.027034

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-3345 vulnerable 2026-06-08 05:33:51.208657 Details available
_gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when the digest final function sets a large count value. It is recommended to upgrade to 1.9.1 or later.
Published: 2021-01-29T14:20:31.000Z
Updated: 2024-08-03T16:53:17.504Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.