GnuPG patched to thwart ‘fake filename’

12 June 2018

If you’re a developer relying on GnuPG, check upstream for an update that plugs an input sanitisation bug. The short version, given in CVE-2018-12020, is that mishandles the filename, and as a result, an attacker can spoof the output it sends to other programs.

Read full news article on The Register

Date:

12 June 2018

Categorie(s):

NEWS

Tag(s):

Encryption, GNU, GnuPG, Malware, Open Source, Open Source Software

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024