[Announce] [CVE-2022-3515] GnuPG / Libksba Security Advisory
wk at gnupg.org
Tue Oct 18 09:55:12 CEST 2022
On Tue, 18 Oct 2022 08:59, Alessandro Vesely said:
> Debian fix kept the old version number 1.5.0-3, though:
FWIW: Debian thus misses
* Allow an OCSP server not to return the sent nonce. [rK24992a4a7a]
* Limited support for the Authenticated-Enveloped-Data content type.
* Support password based decryption. [rKcb7f2484a09c]
* Support Brainpool curves specified by ECDomainParameters.
All of them fixes practical problems found in the real world.
The pioneers of a warless world are the youth that
refuse military service. - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 227 bytes
Desc: not available
More information about the Gnupg-users