[bug-notifications] [gnupg 0003763]: gpg using insecure memory
Mantis Bug Tracker
noreply at opencsw.org
Sat Aug 8 06:13:11 CEST 2009
The following issue has been RESOLVED.
======================================================================
http://www.opencsw.org/mantis/view.php?id=3763
======================================================================
Reported By: maciej
Assigned To: mwatters
======================================================================
Project: gnupg
Issue ID: 3763
Category: packaging
Reproducibility: always
Severity: minor
Priority: normal
Status: resolved
Resolution: fixed
Fixed in Version:
======================================================================
Date Submitted: 2009-07-10 18:59 CEST
Last Modified: 2009-08-08 06:13 CEST
======================================================================
Summary: gpg using insecure memory
Description:
According to gpg FAQ, gpg needs to be installed setuid root on certain
systems to allow it to prevent itself from being swapped out to disk (which
would mean running a risk of a data leakage).
======================================================================
----------------------------------------------------------------------
(0006541) mwatters (manager) - 2009-08-08 06:13
http://www.opencsw.org/mantis/view.php?id=3763#c6541
----------------------------------------------------------------------
New version of 1.4.9 has been placed in testing.
It installs the gpg binary as setuid root
More information about the bug-notifications
mailing list