On Mon, Mar 20, 2023 at 09:01:33AM -0400, Ethan Blanton via Bug reports for GNU Guix wrote: > However, the bug referenced here is fixed in upstream commit > 4cc724639c012215f59648cbb4b7631b9d352e36, which shipped in gnupg > 2.2.34. Meanwhile, all gnupg releases older than 2.2.35 suffer from > an S/MIME key-parsing bug (referenced in > https://www.mail-archive.com/gnupg-users@gnupg.org/msg40758.html).
Does this bug have a CVE ID, or any information from upstream about where it was fixed? It's hard to find release notes on the GnuPG website.
