libjcat - Arch Linux

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-1185	0.1.2-1	0.1.3-1	High	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2020-10759	AVG-1185	High	Yes	Insufficient validation	A PGP signature verification bypass has been found in fwupd prior to 1.4.0, and in libjcat <= 0.1.2. The issue is that if a detached signature is actually a...

Date	Advisory	Group	Severity	Type
31 Jul 2020	ASA-202007-6	AVG-1185	High	insufficient validation