CVE-2026-41990
MEDIUM
NVD
CVSS Score
4
Severity
MEDIUM
Published
Apr 23, 2026
Vendor
unknown
Description
Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data.
Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data.