CVE-2021-3345 in Gnupg and Oracle Products
Published on January 29, 2021
_gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when the digest final function sets a large count value. It is recommended to upgrade to 1.9.1 or later.
Products Associated with CVE-2021-3345
stack.watch emails you whenever new vulnerabilities are published in Gnupg Libgcrypt or Oracle Communications Billing Revenue Management. Just hit a watch button to start following.
Exploit Probability
EPSS
5.71%
Percentile
90.41%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.