A flaw was found in the way certificate signatures could be forged using collisions found in the SHA-1 algorithm. An attacker could use this weakness to create forged certificate signatures. This issue affects GnuPG versions prior to 2.2.18.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnupg gnupg |
||
fedoraproject fedora 30 |
||
fedoraproject fedora 31 |
||
canonical ubuntu linux 18.04 |