Good morning, the attack is not that critical as it needs local access by the attacker. If you have local access why not opening a X pop-up and asking for the key phrase, thunderbird and enigmail do this very frequently and a user wouldn't be suspicious. On 04.07.17 18:59, Mathias Homann wrote:
Hi guys,
https://lists.gnupg.org/pipermail/gnupg-announce/2017q2/000408.html and https://www.heise.de/security/meldung/Seitenkanalangriff-RSA-Verschluesselun... (in german)
Do we have that in Leap 42.2? Will we get that?
Cheers MH
Viele Grüße / Best regards Thomas -- Thomas Biege <thomas@suse.de>, Team Lead MaintenanceSecurity, CSSLP https://www.suse.com/security SUSE Linux GmbH GF: Felix Imendörffer, Jane Smithard, Graham Norton HRB 21284 (AG Nuernberg)