Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/crypto/openpgp: Affected by CVE-2018-12020? #25940

Closed
frontierpsycho opened this issue Jun 18, 2018 · 1 comment
Closed

x/crypto/openpgp: Affected by CVE-2018-12020? #25940

frontierpsycho opened this issue Jun 18, 2018 · 1 comment

Comments

@frontierpsycho
Copy link

Is the opengpg implementation affected by the vulnerability described in the following article?

https://arstechnica.com/information-technology/2018/06/decades-old-pgp-bug-allowed-hackers-to-spoof-just-about-anyones-signature/

I realize it's a new codebase in go, written from scratch, but I want to be sure.

@gopherbot gopherbot added this to the Unreleased milestone Jun 18, 2018
@kardianos
Copy link
Contributor

This is a question. Please see:
https://golang.org/wiki/questions

@golang golang locked and limited conversation to collaborators Jun 18, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Development

No branches or pull requests

3 participants