On Thu, 2016-01-14 at 16:01 +0100, Yves-Alexis Perez wrote: > Thanks for the report, yes we're aware of it. The announcement doesn't read *that* extremely bad (well depends a bit on whether one connects to untrusted systems), though,... thus maybe the severity of this can be lowered. OTOH, since it may allow an attacker to gain the local key (including root's) one may still consider the severity to be appropriate).
Cheers, Chris.
smime.p7s
Description: S/MIME cryptographic signature
