Package impact
crates.io / sequoia-openpgp
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-67897 | unknown | — | — | 7mo ago | In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted me… | |||
| CVE-2024-58261 | unknown | — | — | 2y ago | The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupp… | |||
| CVE-2023-53160 | unknown | — | — | 3y ago | The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array access and a panic. |