Mar 12 2006

Open-source bugs undermine digital signatures

  • Written by Jorge
  • No Comments

A pair of security bugs in cryptography software could allow an attacker to insert content into a digitally signed message or forge signatures on files.


The flaws lie in the open-source GNU Privacy Guard software, also known as GnuPG and GPG, the GnuPG group said in two alerts. The software, a free replacement for the Pretty Good Privacy cryptographic technology, ships with many open-source operating systems such as FreeBSD, OpenBSD and many Linux distributions.

Related Posts

  1. Nokia, Apple Developing Open-Source Browser For Mobile Phones
  2. Open Source Becomes Key Player in Business Models
  3. Open source (GPU Gnutella client) project adds “no military use” clause to the GPL
  4. SimCity Goes Open Source
  5. Azureus-BitTorrent Client Crowned Most Popular Open-Source Software
Zeropaid on Facebook

This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.

Trackbacks url:

Leave a Comment...

Giganews Newsgroups


1 Star2 Stars3 Stars4 Stars5 Stars Loading ... Loading ...

  • streamOG: SoulXTC, Actually DRM is about content owners doing what they can to enforce their copyrights as much as they can. Fo...
  • soulxtc: No single thing has killed the music industry. DRM is simply part of its pattern of ignoring consumers. Also, DRM fo...
  • streamOG: Jared, Apple only did that so they could extend their customer base out beyond the iPod. It had absolutely zero to do...
  • methylated: Number one tool for searching rare music. Nothing comes close. There are two servers now, so download both of the cli...
  • zeropaid: Sure, except Apple started with DRM on everything, recognized their mistake, removed DRM from audio tracks: http://www....
  • streamOG: Jared, DRM didn't kill the music industry any more than it made the movie/video industry. You can't say con...
  • soulxtc: Exactly. The only way to fight P2P is to inspect each and every data packet. If I have to choose between totalitarianism...
  • Victim of PirateBay: lol PirateBay SUCKS you go to thier website and all of a sudden you are attacked with viruses and spyware. Anyone that l...
  • sdsd