{"affected":[{"ecosystem_specific":{"binaries":[{"dirmngr":"2.2.27-150300.3.5.1","gpg2":"2.2.27-150300.3.5.1","gpg2-lang":"2.2.27-150300.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP3","name":"gpg2","purl":"pkg:rpm/suse/gpg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.2.27-150300.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"dirmngr":"2.2.27-150300.3.5.1","gpg2":"2.2.27-150300.3.5.1","gpg2-lang":"2.2.27-150300.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP4","name":"gpg2","purl":"pkg:rpm/suse/gpg2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.2.27-150300.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"gpg2":"2.2.27-150300.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.1","name":"gpg2","purl":"pkg:rpm/suse/gpg2&distro=SUSE%20Linux%20Enterprise%20Micro%205.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.2.27-150300.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"gpg2":"2.2.27-150300.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.2","name":"gpg2","purl":"pkg:rpm/suse/gpg2&distro=SUSE%20Linux%20Enterprise%20Micro%205.2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.2.27-150300.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"dirmngr":"2.2.27-150300.3.5.1","gpg2":"2.2.27-150300.3.5.1","gpg2-lang":"2.2.27-150300.3.5.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"gpg2","purl":"pkg:rpm/opensuse/gpg2&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.2.27-150300.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"dirmngr":"2.2.27-150300.3.5.1","gpg2":"2.2.27-150300.3.5.1","gpg2-lang":"2.2.27-150300.3.5.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"gpg2","purl":"pkg:rpm/opensuse/gpg2&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.2.27-150300.3.5.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for gpg2 fixes the following issues:\n\n- CVE-2022-34903: Fixed a status injection vulnerability (bsc#1201225).\n- Use AES as default cipher instead of 3DES when we are in FIPS mode. (bsc#1196125)\n","id":"SUSE-SU-2022:2546-1","modified":"2022-07-25T12:43:40Z","published":"2022-07-25T12:43:40Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20222546-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1196125"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201225"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-34903"}],"related":["CVE-2022-34903"],"summary":"Security update for gpg2","upstream":["CVE-2022-34903"]}