GnuPG official statement regarding EFAIL

PDF Document

It appears your Web browser is not configured to display PDF files. Download adobe Acrobat or click here to download the PDF file.

License

Creative Commons Licence

Creator(s)

Robjert J. Hansen

Contributors

Sylvain Besençon

Contributed date

August 28, 2022 - 6:25pm

Critical Commentary

This Official Statement on New Claimed Vulnerabilities by the GnuPG and Gpg4Win teams was sent on the GnuPG-users mailing list by Robert J. Hansen. It comments the EFAIL vulnerabilities and states that:

  1. This paper is misnamed.
  2. This attack targets buggy email clients.
  3. The authors made a list of buggy email clients.

Source

https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060334.html

Group Audience

Need help with PECE?
Join the PECE Slack channel