Control: close 985907 0.16.0-1
On Thu 2021-03-25 13:39:00 -0400, Daniel Kahn Gillmor wrote:
> rnp currently accepts signatures over weak or untrustworthy
> cryptographic primitives.
As of 0.16.0, rnp introduces the following relevant safeguards (from
upstream's CHANGELOG.md):
* Mark SHA1
Package: src:rnp
Version: 0.14.0-6
Control: forwarded -1 https://github.com/rnpgp/rnp/issues/1281
rnp currently accepts signatures over weak or untrustworthy
cryptographic primitives.
At the moment, there is no API for adjusting which mechanisms are
acceptable, and all implemented algorithms are
2 matches
Mail list logo
