REDHAT-BUG-2433464: Buffer Overflow

Q: What is the severity of REDHAT-BUG-2433464?

REDHAT-BUG-2433464 is classified as a high-severity vulnerability due to the potential for a stack-based buffer overflow.

Q: How do I fix REDHAT-BUG-2433464?

To mitigate REDHAT-BUG-2433464, upgrade GnuPG to version 2.5.17 or later.

Q: Which versions of GnuPG are affected by REDHAT-BUG-2433464?

GnuPG versions prior to 2.5.17 are affected by REDHAT-BUG-2433464.

Q: What components are impacted by REDHAT-BUG-2433464?

REDHAT-BUG-2433464 impacts the tpm2daemon during its handling of the PKDECRYPT command.

Q: What should I do if I cannot upgrade GnuPG to fix REDHAT-BUG-2433464?

If upgrading is not possible, consider applying security measures such as restricting access to vulnerable components until the upgrade can be performed.

Published Jan 27, 2026

Updated

In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys.

Affected Software

1 affected component

gnupg GnuPG<2.5.17

Event History

Jan 27, 2026

Data Sourced

via Red Hat·07:01 PM

DescriptionSeverityAffected Software

Frequently Asked Questions

What is the severity of REDHAT-BUG-2433464?

REDHAT-BUG-2433464 is classified as a high-severity vulnerability due to the potential for a stack-based buffer overflow.

How do I fix REDHAT-BUG-2433464?

To mitigate REDHAT-BUG-2433464, upgrade GnuPG to version 2.5.17 or later.

Which versions of GnuPG are affected by REDHAT-BUG-2433464?

GnuPG versions prior to 2.5.17 are affected by REDHAT-BUG-2433464.

What components are impacted by REDHAT-BUG-2433464?

REDHAT-BUG-2433464 impacts the tpm2daemon during its handling of the PKDECRYPT command.

What should I do if I cannot upgrade GnuPG to fix REDHAT-BUG-2433464?