VYPR

rpm package

opensuse/rnp&distro=openSUSE Leap 16.0

pkg:rpm/opensuse/rnp&distro=openSUSE%20Leap%2016.0

Vulnerabilities (1)

  • CVE-2025-13470HigNov 21, 2025
    affected < 0.18.1-bp160.1.1fixed 0.18.1-bp160.1.1

    In RNP version 0.18.0 a refactoring regression causes the symmetric session key used for Public-Key Encrypted Session Key (PKESK) packets to be left uninitialized except for zeroing, resulting in it always being an all-zero byte array. Any data encrypted using public-key encr