This page lists publicly disclosed CVE vulnerabilities affecting sequoia-pgp sequoia-openpgp (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-53160 | The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array access and a panic. | [email protected] | 2.9 | 0.28% | 2025-07-28 | 2025-08-06 |
| CVE-2024-58261 | The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type. | [email protected] | 2.9 | 0.08% | 2025-07-27 | 2025-08-06 |