Follow

Wow...

Cleartext message spoofing in Go Cryptography Libraries (CVE-2019-11841)

When inserting the “LINE TABULATION” character, the header text after the attached character looks as if it were part of a message when it is actually part of the Armor Header. The signature verification performed by the library determined all signatures to be valid

sec-consult.com/en/blog/adviso

Sign in to participate in the conversation
quey

We are quey.org! We are a generalistic and moderated Mastodon instance for people of all colours and sizes. No ads, no tracking just be free.