Fedora: GnuPG Signing key vulnerability

Dec11
by Ike on December 11, 2003 at 10:32 am
Posted In: Fedora Linux Distribution - Security Advisories

Phong Nguyen identified a severe bug in the way GnuPG creates anduses ElGamal keys, when those keys are used both to sign and encryptdata. This vulnerability can be used to trivially recover theprivate key.

└ Tags:
 Comment