2 matches found
CVE-2020-10759
A PGP signature bypass flaw was found in fwupd all versions, which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service LVFS is either not implemented or enabled in versions ...
OPENSUSE-SU-2020:0849-1 Security update for fwupd
This update for fwupd fixes the following issues: - CVE-2020-10759: Fixed a potential PGP signature bypass, which could have led to installation of unsigned firmware bsc1172643 This update was imported from the SUSE:SLE-15-SP1:Update update project...