30 matches found
EUVD-2019-5821
Malware in sbrugna...
EUVD-2019-2529
Malware in sbrugna...
EUVD-2019-2534
Malware in sbrugna...
EUVD-2024-43422
Malicious code in bioql PyPI...
Ubuntu 18.04 LTS : PIM Messagelib vulnerabilities (USN-7730-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7730-1 advisory. Damian Poddebniak, Christian Dresen, Jens Mller, Fabian Ising, Sebastian Schinzel, Simon Friedberger, Juraj Somorovsky, and Jrg Schwenk discovered that P...
Linux Distros Unpatched Vulnerability : CVE-2024-49395
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...
SUSE CVE-2024-49395
In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...
CVE-2024-49395
In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...
CVE-2024-49395
In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferring from the recipients info...
Improperly Implemented path matching for in-toto-golang
Impact Authenticated attackers posing as functionaries i.e., within a trusted set of users for a layout are able to create attestations that may bypass DISALLOW rules in the same layout. An attacker with access to trusted private keys, may issue an attestation that contains a disallowed artifact ...
CVE-2019-14664
In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...
CVE-2019-14664
In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...
Intel Corporation: [FG-VD-19-009] Intel(R) Trace Analyzer and Collector 2019 Memory Corruption Vulnerability Notification
The Vulnerability Report along with PoC file has been shared in the PGP encrypted using Intel Public Key Attachment along with this report. Impact Memory Corruption & Arbitrary Code Execution...
How Dutch Police Decrypted BlackBerry PGP Messages For Criminal Investigation
The Dutch police have managed to decrypt a number of PGP-encrypted messages sent by criminals using their custom security-focused PGP BlackBerry phones and identified several criminals in an ongoing investigation. PGP, or Pretty Good Privacy, an open source end-to-end encryption standard that can...
Cryptography Expert Says, 'PGP Encryption is Fundamentally Broken, Time for PGP to Die'
A Senior cryptography expert has claimed multiple issues with PGP email encryption - an open source end-to-end encryption to secure email. Before continuing, I would like to clarify that covering this topic doesn't mean you should stop using PGP encryption, instead we are bringing to you what...
New Signal App Brings Encrypted Calling to iPhone
iPhone users concerned about government surveillance efforts putting unencrypted calls at risk now have a free app at their disposal that brings secure communication to the Apple phone. Open WhisperSystems, developers of RedPhone for Android, have developed a similar app for iPhone called Signal,...
How to use PGP encryption with Mozilla Thunderbird Email client
In my last article, we have learnt that how to encrypt our Emails using Gnu Privacy Guard. Previously we used Microsoft Outlook as a desktop mail client and a GpgOL plugin to handle encryption decryption of our communication. Since Microsoft is a US-based company, that has to follow all the laws ...
What Is PGP Encryption And How To Encrypt Your Emails
Now that we have enough details about how the NSA's Surveillance program, running for a long time against almost each country of this planet. Hundreds of top-secret NSA documents provided by whistleblower Edward Snowden already exposed that Spying projects like PRISM and MUSCULAR are tapping...
Phil Zimmermann: 'We Really, Really Don't Have the Keys'
SAN JUAN, Puerto Rico–Phil Zimmermann has seen more changes in the the threat landscape in his career than he may care to remember. The inventor of the PGP encryption software and one of the key movers in the crypto wars of the early 1990s, Zimmermann is back in the game now with a new mobile...
[security bulletin] HPSBMA02667 SSRT100464 rev.1 - HP SiteScope, Cross Site Scripting (XSS) and HTML Injection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Document ID: c02807712 Version: 1 HPSBMA02667 SSRT100464 rev.1 - HP SiteScope, Cross Site Scripting XSS and HTML Injection NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2011-04-21 Last Update...