VDB
ALPINE-CVE-2018-12020
ALPINE-CVE-2018-12020
PUBLISHED
CVSS 7.5 HIGH
mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the "--status-fd 2" option. For example, the OpenPGP data might represent an original filename that contains line feed characters in conjunction with GOODSIG or VALIDSIG status codes.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.17 | gnupg | 2.1.2-r1, 2.1.19-r0, 2.1.15-r0 |
| Alpine:v3.11 | gnupg | 2.1.20-r0, 0, 2.0.10-r1 |
| Alpine:v3.11 | gnupg1 | 1.4.16-r4, 1.4.19-r0, 1.4.20-r0 |
| Alpine:v3.21 | gnupg | 2.1.19-r0, 2.2.6-r3, 2.2.5-r0 |
| Alpine:v3.15 | gnupg | 2.1.9-r0, 2.1.9-r1, 2.2.0-r0 |
| Alpine:v3.13 | gnupg | 2.1.19-r0, 0, 2.0.10-r1 |
| Alpine:v3.7 | gnupg | 2.1.16-r0, 2.0.10-r1, 2.0.15-r0 |
| Alpine:v3.12 | gnupg1 | 1.4.16-r3, 1.4.16-r4, 1.4.18-r0 |
| Alpine:v3.6 | gnupg1 | 1.4.16-r2, 1.4.16-r4, 1.4.18-r0 |
| Alpine:v3.5 | gnupg1 | 1.4.16-r4, 1.4.16-r3, 1.4.16-r2 |
| Alpine:v3.7 | gnupg1 | 1.4.16-r0, 1.4.16-r0, 1.4.16-r1 |
| Alpine:v3.9 | gnupg1 | 1.4.20-r0, 1.4.21-r0, 1.4.16-r1 |
| Alpine:v3.20 | gnupg | 2.1.20-r0, 0, 0 |
| Alpine:v3.6 | gnupg | 0, 0, 0 |
| Alpine:v3.22 | gnupg | 2.1.20-r0, 2.0.10-r0, 2.0.15-r0 |
| Alpine:v3.8 | gnupg | 2.1.23-r0, *, 2.0.19-r0 |
| Alpine:v3.24 | gnupg | 0, 0 |
| Alpine:v3.19 | gnupg | 2.2.0-r0, 0, 2.0.10-r0 |
| Alpine:v3.4 | gnupg | 2.1.0-r1, 2.0.22-r1, 2.0.21-r0 |
| Alpine:v3.16 | gnupg | 2.2.0-r0, 2.1.8-r0, 2.1.7-r1 |
…and 9 more
Timeline
- Jun 8, 2018 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 9, 2026 CVE Updated