SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg (CVE-2018-12020)
Do we have to avoid --verbose even after upgrading to gnupg@2.2.8 ? The write-up is ambiguous.
--verbose
Article says that it’s been fixed already, so I assume we should be safe after updating.
SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg (CVE-2018-12020)
Do we have to avoid
--verbose
even after upgrading to gnupg@2.2.8 ? The write-up is ambiguous.Article says that it’s been fixed already, so I assume we should be safe after updating.