#VU79272 Out-of-bounds write in GnuPG - CVE-2022-3219

Cybersecurity Help s.r.o.

Published: 2023-08-09

Vulnerability identifier: #VU79272

Vulnerability risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-3219

CWE-ID: CWE-787

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
GnuPG
Client/Desktop applications / Encryption software

Vendor: GNU

Description

The vulnerability allows a local user to compromise vulnerable system.

The vulnerability exists due to GnuPG can be made to spin on a relatively small input by (for example) crafting a public key with thousands of signatures attached, compressed down to just a few KB. A remote attacker can send a specially crafted file, trigger an out-of-bounds write and execute arbitrary code on the target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

GnuPG: All versions

External links
https://bugzilla.redhat.com/show_bug.cgi?id=2127010
https://dev.gnupg.org/T5993
https://marc.info/?l=oss-security&m=165696590211434&w=4
https://dev.gnupg.org/D556
https://access.redhat.com/security/cve/CVE-2022-3219
https://security.netapp.com/advisory/ntap-20230324-0001/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Guardium Data Security Center

Multiple vulnerabilities in Dell Container Storage Modules