[HOME] [DOWNLOAD] [DOCS] [NEWS] [SUPPORT] [TIPS] [ISSUES] [CONTRIBUTE] [DONATE]

Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg

General Tor and Anonymity Talk

TNT_BOM_BOM November 7, 2018, 7:08am #1

SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg (CVE-2018-12020)

https://neopg.io/blog/gpg-signature-spoof/

in short dont use gpg --verbose on the command line. upgrade everything.

Patrick November 7, 2018, 9:03am #2

Was mentioned before in Whonix forum. Fixed in gpg already. No changes
required.

2 Likes

[Imprint] [Privacy Policy] [Cookie Policy] [Terms of Use] [E-Sign Consent] [DMCA] [Contributors] [Investors] [Priority Support] [Professional Support]