kgpg: keys generated in wizard have an empty passphrase
| Package(s): | kgpg |
CVE #(s): | |
| Created: | November 11, 2002 |
Updated: | November 13, 2002 |
| Description: |
A bug in Kgpg's key generation affects all secret keys generated through
Kgpg's wizard. (Bug does not affect keys created in console/expert
mode). All keys created through the wizard have an empty passphrase, which
means that if someone has access to your computer and can read your secret
key, he/she can decrypt your files whitout the need of a passphrase. See
the full report for
details. |
| Alerts: |
|
