AVG-1979 log

Package keystone
Status Not affected
Severity Medium
Type private key recovery
Affected 0.9.2-1
Fixed Not affected
Current 0.9.2-5 [extra]
Ticket None
Created Sat May 22 09:24:56 2021
Issue Severity Remote Type Description
CVE-2021-3563 Medium Yes Private key recovery
Keystone only verifies part of the secret - the first 72 characters. Additional complexity is ignored, giving users an inflated sense of security. Default...