AVG-713

Package gnupg
Status Fixed
Severity High
Type content spoofing
Affected 2.2.7-1
Fixed 2.2.8-1
Current 2.2.12-2 [core]
Ticket FS#58931
Created Fri Jun 8 14:36:27 2018
Issue Severity Remote Type Description
CVE-2018-12020 High Yes Content spoofing
A security issue has been found in gnupg before 2.2.8, leading to the possibility of faking verification status of signed content. The OpenPGP protocol...
Date Advisory Package Description
11 Jun 2018 ASA-201806-8 gnupg content spoofing
References
https://lists.gnupg.org/pipermail/gnupg-announce/2018q2/000425.html