Releases60
Frequency1 month 2 weeks
Last Release
Downloads1.6M
OpenPGP data types and associated machinery

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
< 1.1.1, >= 1.2.0, < 1.8.1, >= 1.9.0, < 1.16.02.9 LOW

The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array access and a panic.

>= 1.13.0, < 1.21.02.9 LOW

The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type.