Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt.Referenceshttps://lists.gnupg.org/pipermail/gnupg-announce/2026q2/000503.htmlhttps://dev.gnupg.org/T8211https://www.openwall.com/lists/oss-security/2026/04/21/1
