Skip to content

[AUTOPATCHER-CORE] Upgrade gnupg2 to 2.4.9 for CVE-2025-68973 [HIGH]#15430

Merged
jslobodzian merged 3 commits intofasttrack/3.0from
cblmargh/gnupg2-upgrade-to-2.4.9-fasttrack/3.0
Jan 5, 2026
Merged

[AUTOPATCHER-CORE] Upgrade gnupg2 to 2.4.9 for CVE-2025-68973 [HIGH]#15430
jslobodzian merged 3 commits intofasttrack/3.0from
cblmargh/gnupg2-upgrade-to-2.4.9-fasttrack/3.0

Conversation

@CBL-Mariner-Bot
Copy link
Copy Markdown
Collaborator

@CBL-Mariner-Bot CBL-Mariner-Bot commented Jan 5, 2026

[AUTOPATCHER-CORE] Upgrade gnupg2 to 2.4.9 for CVE-2025-68973
Upgrade pipeline run -> https://dev.azure.com/mariner-org/mariner/_build/results?buildId=1018798&view=results

@CBL-Mariner-Bot CBL-Mariner-Bot requested a review from a team as a code owner January 5, 2026 06:54
@Kanishk-Bansal Kanishk-Bansal mentioned this pull request Jan 5, 2026
Closed
12 tasks
@Kanishk-Bansal
Copy link
Copy Markdown
Contributor

Kanishk-Bansal commented Jan 5, 2026

CVE-2025-68973 fixed by gpg/gnupg@4ecc512

@Kanishk-Bansal
Copy link
Copy Markdown
Contributor

Kanishk-Bansal commented Jan 5, 2026

Buddy Build

@Kanishk-Bansal Kanishk-Bansal added the CVE-fixed-by-upgrade CVE fixed by package upgrade label Jan 5, 2026
@Kanishk-Bansal Kanishk-Bansal self-assigned this Jan 5, 2026
@Kanishk-Bansal Kanishk-Bansal changed the title [AUTOPATCHER-CORE] Upgrade gnupg2 to 2.4.9 for CVE-2025-68973 [AUTOPATCHER-CORE] Upgrade gnupg2 to 2.4.9 for CVE-2025-68973 [HIGH] Jan 5, 2026
@Kanishk-Bansal Kanishk-Bansal added the CVEFixReadyForMaintainerReview When a CVE fix has been reviewed by release manager and is ready for stable maintainer review label Jan 5, 2026
@jslobodzian jslobodzian merged commit 5936bd6 into fasttrack/3.0 Jan 5, 2026
34 of 35 checks passed
@jslobodzian jslobodzian deleted the cblmargh/gnupg2-upgrade-to-2.4.9-fasttrack/3.0 branch January 5, 2026 20:59
CBL-Mariner-Bot added a commit that referenced this pull request Jan 5, 2026
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTOPATCHER-CORE] Upgrade gnupg2 to 2.4.9 for CVE-2025-68973 [HIGH] (
e752ba0 
#15430)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
(cherry picked from commit 5936bd6)
@CBL-Mariner-Bot CBL-Mariner-Bot mentioned this pull request Jan 5, 2026
Merged
@CBL-Mariner-Bot
Copy link
Copy Markdown
Collaborator Author

CBL-Mariner-Bot commented Jan 5, 2026

Auto cherry-pick results:

Auto cherry-pick pipeline run -> https://dev.azure.com/mariner-org/mariner/_build/results?buildId=1019188&view=results

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jslobodzian jslobodzian jslobodzian approved these changes

Assignees

@Kanishk-Bansal Kanishk-Bansal

Labels

Automatic PR AutoUpgrade Core CVE-fixed-by-upgrade CVE fixed by package upgrade CVEFixReadyForMaintainerReview When a CVE fix has been reviewed by release manager and is ready for stable maintainer review fasttrack/3.0 PRs Destined for Azure Linux 3.0 Packaging

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@CBL-Mariner-Bot @Kanishk-Bansal @jslobodzian