Mailinglist Archive: opensuse-bugs (7993 mails)
| < Previous | Next > |
[Bug 225953] New: kmail picks wrong public keys for email addresses that end with the same strings
- From: bugzilla_noreply@xxxxxxxxxx
- Date: Mon, 4 Dec 2006 17:17:53 -0700 (MST)
- Message-id: <bug-225953-21960@xxxxxxxxxxxxxxxxxxxxxxxxx/>
https://bugzilla.novell.com/show_bug.cgi?id=225953
Summary: kmail picks wrong public keys for email addresses that
end with the same strings
Product: SUSE Linux 10.1
Version: Final
Platform: x86
URL: http://bugs.kde.org/show_bug.cgi?id=126292
OS/Version: SuSE Linux 10.1
Status: NEW
Severity: Normal
Priority: P5 - None
Component: KDE
AssignedTo: bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
ReportedBy: kai.blin@xxxxxxxxx
QAContact: kde-maintainers@xxxxxxx
Assuming I have a public key for a user with an email of foo.bar@xxxxxxxxxxx
and I'm trying to send a signed email to an email address bar@xxxxxxxxxxx kmail
claims there is a public key available and offers to encrypt the message, too.
When following up on that by clicking sign&encrypt it will open a window
offering to select the keys used, claiming that it picked a key for
bar@xxxxxxxxxxx, but actually picked the key for foo.bar@xxxxxxxxxxx
I can't think of any way this can be a security issue, but it's really annoying
for sure. This was reported upstream for SuSE 10.0 as bug #126292, but has been
ignored so far.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Summary: kmail picks wrong public keys for email addresses that
end with the same strings
Product: SUSE Linux 10.1
Version: Final
Platform: x86
URL: http://bugs.kde.org/show_bug.cgi?id=126292
OS/Version: SuSE Linux 10.1
Status: NEW
Severity: Normal
Priority: P5 - None
Component: KDE
AssignedTo: bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
ReportedBy: kai.blin@xxxxxxxxx
QAContact: kde-maintainers@xxxxxxx
Assuming I have a public key for a user with an email of foo.bar@xxxxxxxxxxx
and I'm trying to send a signed email to an email address bar@xxxxxxxxxxx kmail
claims there is a public key available and offers to encrypt the message, too.
When following up on that by clicking sign&encrypt it will open a window
offering to select the keys used, claiming that it picked a key for
bar@xxxxxxxxxxx, but actually picked the key for foo.bar@xxxxxxxxxxx
I can't think of any way this can be a security issue, but it's really annoying
for sure. This was reported upstream for SuSE 10.0 as bug #126292, but has been
ignored so far.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
| < Previous | Next > |