Gnupg · Gnupg · CVE-2026-24883
**Name of the Vulnerable Software and Affected Versions**
GnuPG versions prior to 2.5.17
**Description**
A long signature packet length can cause the `parse signature` function to return success while setting the `sig->data` pointer to a NULL value. This results in a denial of service, specifically an application crash.
**Recommendations**
Update to a version of GnuPG 2.5.17 or later.