Search

Search is not available in local development.
Run npx pagefind --site __site after building to enable it.

JLSEC-2026-496 Medium 6.7

Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via...

Source Edit History OSV JSON (OSV)

JLSEC Published: May 14, 2026
Modified: May 14, 2026
Severity: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
Affected Packages: Libgcrypt_jll >= 1.8.11+0, < 1.12.2+0
Aliases / Upstream: CVE-2026-41989 GHSA-wrv8-79m2-qg24 EUVD-2026-25192

Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcrypkdecrypt.

References