info
discussion
exploit
solution
references
GnuPG Detached Signature Verification Bypass Vulnerability
References:
DSA-978-1 gnupg -- programming error
(Debian)
GNU Privacy Guard Home Page
(GNU)
RHSA-2006:0266-8 - gnupg security update
(RedHat)
False positive signature verification in GnuPG
(Werner Koch
)
SUSE Security Announcement: gpg,liby2util signature checking problems (SUSE-SA:2
(meissner@suse.de)
Privacy Statement
Copyright 2010, SecurityFocus
