CVE-2006-6169
EPSS 2.6%gnupg
Published: 11/29/2006Modified: 4/28/2026
Description
Heap-based buffer overflow in the ask_outfile_name function in openfile.c for GnuPG (gpg) 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages with "C-escape" expansions, which cause the make_printable_string function to return a longer string than expected while constructing a prompt.
Affected packages (2)
- Debian/gnupgfrom 0, < 1.4.1-1.sarge6
- Debian/gnupg2from 0, < 2.0.0-5.1