klali
commented
9 years ago Official releases for this project is listed on https://developers.yubico.com/ykneo-openpgp/Releases/ unfortunately the github releases tab can't be disabled.
Closed jonathancross closed 9 years ago
klali
commented
9 years ago Official releases for this project is listed on https://developers.yubico.com/ykneo-openpgp/Releases/ unfortunately the github releases tab can't be disabled.
According to SecurityAdvisory 2015-04-14 all versions of this OpenPGP applet
1.0.9or earlier are vulnerable. There is a tag for1.0.10, but no official release on GitHub since 1.0.2.Also, the security fix should be clearly explained in the release notes as it is not obvious from commit comments.