Debian Rust-Sequoia-Openpgp vulnerabilities

CVE-2025-67897 [MEDIUM] CVE-2025-67897: rust-sequoia-openpgp - In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is to... In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2.1.0-1) sid: resolved (fixed in 2.1.0-1)

CVE-2024-58261 [LOW] CVE-2024-58261: rust-sequoia-openpgp - The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop ... The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 1.21.0-1) sid: resolved (fixed in 1.21.0-1) trixie: reso

CVE-2023-53160 [LOW] CVE-2023-53160: rust-sequoia-openpgp - The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array acce... The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array access and a panic. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 1.16.0-1) sid: resolved (fixed in 1.16.0-1) trixie: resolved (fixed in 1.16.0-1)