Updated cure53 Security Audit 2015 (markdown)

Dominik Schürmann 2015-10-29 10:06:45 +01:00
parent 8222c0cd9f
commit de963b68aa
1 changed files with 1 additions and 1 deletions

@ -1,6 +1,6 @@
The Security Audit can be downloaded at https://cure53.de/pentest-report_openkeychain.pdf The Security Audit can be downloaded at https://cure53.de/pentest-report_openkeychain.pdf
All identified vulnerabilities has been discussed with cure53 and fixed in OpenKeychain 3.6. Only OKC-01-006 has not been fixed because it is not in our threat model. We will work on two Miscellaneous Issues (not vulnerabilities!) for a future version of OpenKeychain. All identified vulnerabilities has been discussed with cure53 and fixed in OpenKeychain 3.6. Only OKC-01-006 has not been fixed because it is not in our threat model. We will work on two Miscellaneous Issues (not vulnerabilities) for a future version of OpenKeychain.
## Identified Vulnerabilities ## Identified Vulnerabilities
### OKC-01-001 Private Keys can be imported from Keyserver (Medium) ### OKC-01-001 Private Keys can be imported from Keyserver (Medium)