Mirrors
/
open-keychain
mirror of https://github.com/open-keychain/open-keychain.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Updated cure53 Security Audit 2015 (markdown)

Dominik Schürmann 2017-01-05 21:54:42 +01:00
parent aa97013847
commit 987ef7a6b5
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
cure53-Security-Audit-2015.md

@ -1,6 +1,6 @@
The Security Audit can be downloaded at https://cure53.de/pentest-report_openkeychain.pdf
All identified vulnerabilities has been discussed with cure53 and fixed in OpenKeychain 3.6. Only OKC-01-006 has not been fixed because it is not in our threat model. We will work on two "Miscellaneous Issues" (not vulnerabilities) for a future version of OpenKeychain.
All identified vulnerabilities has been discussed with cure53 and fixed in OpenKeychain 3.6. OKC-01-006 has been fixed in 4.2. We will work on two "Miscellaneous Issues" (not vulnerabilities) for a future version of OpenKeychain.
## Identified Vulnerabilities
### OKC-01-001 Private Keys can be imported from Keyserver (Medium)