Update hall of fame.

parent 91932cc3
......@@ -18,30 +18,6 @@
</a></li>
</ul>
<h2>GPGME</h2>
<ul>
<li><a href="https://dev.gnupg.org/T4725">
Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23
</a></li>
<li>
GPGME gets FDs confused in high concurrency settings, deadlocks on select
</li>
</ul>
<h2>GnuPG</h2>
<ul>
<li><a href="https://dev.gnupg.org/T4727">
GnuPG creates keys that it cannot use, likely related to AEAD
</a></li>
</ul>
<h2>RNP</h2>
<ul>
<li><a href="https://github.com/rnpgp/rnp/issues/929">
Generating a key with multiple userids silently ignores all but last userid
</a></li>
</ul>
<h2>DKGPG</h2>
<ul>
<li><a href="https://savannah.nongnu.org/bugs/index.php?57097">
......@@ -68,4 +44,63 @@
<li><a href="https://savannah.nongnu.org/bugs/index.php?57135">
dkg-verify fails to verify signatures with leading zeros
</a></li>
<li><a href="https://savannah.nongnu.org/bugs/index.php?58776">
Verification fails with "key was not intended for signing" though it is
</a></li>
<li><a href="https://savannah.nongnu.org/bugs/index.php?58887">
dkgpg excludes trailing whitespace from hashing when verifying text signatures
</a></li>
<li><a href="https://savannah.nongnu.org/bugs/index.php?58895">
Unknown notations with the "critical" bit set SHOULD invalidate the signature
</a></li>
</ul>
<h2>OpenPGP.js</h2>
<ul>
<li><a href="https://github.com/openpgpjs/openpgpjs/issues/1136">
Unknown notations with the "critical" bit set SHOULD invalidate the signature
</a></li>
<li><a href="https://github.com/openpgpjs/openpgpjs/issues/1137">
Signatures without signature creation time subpackets are invalid
</a></li>
</ul>
<h2>RNP</h2>
<ul>
<li><a href="https://github.com/rnpgp/rnp/issues/929">
Generating a key with multiple userids silently ignores all but last userid
</a></li>
<li><a href="https://github.com/rnpgp/rnp/issues/1211">
Unbounded recursion when decrypting messages leading to unbounded allocation
</a></li>
<li><a href="https://github.com/rnpgp/rnp/issues/1234">
Unknown notations with the "critical" bit set SHOULD invalidate the signature
</a></li>
</ul>
<h2>PGPy</h2>
<ul>
<li><a href="https://github.com/SecurityInnovation/PGPy/issues/331">
Primary key binding signature is not checked
</a></li>
<li><a href="https://github.com/SecurityInnovation/PGPy/issues/332">
Critical, unknown subpackets and notations SHOULD invalidate signatures
</a></li>
</ul>
<h2>GPGME</h2>
<ul>
<li><a href="https://dev.gnupg.org/T4725">
Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23
</a></li>
<li>
GPGME gets FDs confused in high concurrency settings, deadlocks on select
</li>
</ul>
<h2>GnuPG</h2>
<ul>
<li><a href="https://dev.gnupg.org/T4727">
GnuPG creates keys that it cannot use, likely related to AEAD
</a></li>
</ul>
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment