Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 16 May 2018 17:28:50 +1000
From: Brian May <bam@...ian.org>
To: oss-security@...ts.openwall.com
Subject: Re: PGP/MIME and S/MIME mail clients vulnerabilities

Brian May <bam@...ian.org> writes:

> From https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060361.html:
>
> "We should also be very careful to note that none of this discussion
> thread applies to the MIME concatenation vulnerability, which is a
> problem in Thunderbird and other mail clients, and which cannot be
> solved by gnupg."

Also see links in
https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060358.html to
upstream bug reports in GnuPG and Enigmail.

https://dev.gnupg.org/T3981
https://sourceforge.net/p/enigmail/bugs/838/
-- 
Brian May <bam@...ian.org>

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ