Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 16 May 2018 17:28:50 +1000
From: Brian May <bam@...ian.org>
To: oss-security@...ts.openwall.com
Subject: Re: PGP/MIME and S/MIME mail clients vulnerabilities

Brian May <bam@...ian.org> writes:

> From https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060361.html:
>
> "We should also be very careful to note that none of this discussion
> thread applies to the MIME concatenation vulnerability, which is a
> problem in Thunderbird and other mail clients, and which cannot be
> solved by gnupg."

Also see links in
https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060358.html to
upstream bug reports in GnuPG and Enigmail.

https://dev.gnupg.org/T3981
https://sourceforge.net/p/enigmail/bugs/838/
-- 
Brian May <bam@...ian.org>

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.