[HOME] [DOWNLOAD] [DOCS] [NEWS] [SUPPORT] [TIPS] [ISSUES] [Priority Support]

Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg


#1

SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg (CVE-2018-12020)

https://neopg.io/blog/gpg-signature-spoof/

in short dont use gpg --verbose on the command line. upgrade everything.


#2

Was mentioned before in Whonix forum. Fixed in gpg already. No changes
required.