An update for gnupg2 is now available for HCE 1.1

HCE1-SA-2023-0021 An update for gnupg2 is now available for HCE 1.1 Moderate HCE 1.1 Security Fix(es): The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service (invalid read and use-after-free) via a crafted keyring file. (CVE-2015-1606) kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service (invalid read operation) via a crafted keyring file, related to sign extensions and "memcpy with overlapping ranges." (CVE-2015-1607) HCE 1.1 gnupg2-2.0.22-6.hce1c.x86_64.rpm