Mailinglist Archive: opensuse-security (109 mails)

< Previous Next >
Re: [suse-security] SUSE Security Announcement: gpg,liby2util signature checking problems (SUSE-SA:2006:013)
  • From: Malte Gell <malte.gell@xxxxxx>
  • Date: Mon, 6 Mar 2006 17:59:51 +0100
  • Message-id: <200603061759.52053.malte.gell@xxxxxx>
On Wednesday 01 March 2006 10:24, Marcus Meissner wrote:

Hello,

> Package: gpg,liby2util
> Announcement ID: SUSE-SA:2006:013
> Date: Wed, 01 Mar 2006 11:00:00 +0000
> Affected Products: SUSE LINUX 10.0

the longer I think about this, the more this bug frightens me... For so
many years up to now it was possible to foist malicious code with
faulty gpg signatures... Has there ever been evidene that someone made
use of this terribly severe bug?

Regards
Malte

< Previous Next >
References