Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
This commit prevents the gpg backend from decrypting non integrity protected messages. The efail [0] vurneability relies on the attacker being able to inject content into an encrypted mail. According to [1], the correct way of detecting if decryption succeeded is not to check the return code. Instead the `--status-fd` should be checked for DECRYPTION_OKAY. Imp currently displays the decrypted body (including the gpg warning) in the message pane. This opens up decryption oracle attacks. [0] https://efail.de/ [1] https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=blob_plain;f=doc/DETAILS
- Loading branch information