[openssl-dev] [openssl.org #3940] Missing CRL checks in cms/smime cmdline utilities
Dmitry Belyavsky via RT
rt at openssl.org
Sun Jul 12 15:12:56 UTC 2015
Hello,
There is a missing CRL check on encrypting the messages using the
'cms/smime -encrypt' commands. Encrypting the message for the owner of a
compromised key is dangerous, so CRL check in these utilities will be
useful enough.
Thank you!
--
SY, Dmitry Belyavsky
-------------- next part --------------
_______________________________________________
openssl-bugs-mod mailing list
openssl-bugs-mod at openssl.org
https://mta.openssl.org/mailman/listinfo/openssl-bugs-mod
More information about the openssl-dev
mailing list