libjcat

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Library for reading and writing Jcat files
Version 0.1.2-1 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-1185 0.1.2-1 High Vulnerable
Issue Group Severity Remote Type Description
CVE-2020-10759 AVG-1185 High Yes Insufficient validation
A PGP signature verification bypass has been found in fwupd prior to 1.4.0, and in libjcat <= 0.1.2. The issue is that if a detached signature is actually a...