[Bug 1491360] [NEW] New Engimail encrypts with the wrong key
Lars Noodén
lars.nooden at gmail.com
Wed Sep 2 11:44:36 UTC 2015
*** This bug is a security vulnerability ***
Public security bug reported:
With the most recent upgrade of Enigmail on Ubuntu 14.04 LTS, my previous settings are lost and it is not using the key it used to
use. Instead of using the active OpenPGP key it is using one of my archived, disabled keys. When I send a message to myself, it tells me it is using the right key,
"Note: The message is encrypted for the following User ID's / Keys:
0xDEF20AB6xxxxxxxx"
yet it still encrypts with the wrong key. What I expect would happen
would be that Enigmail would use the same key it used to use (which is
the one it says it is using) instead of the wrong key. Furthermore the
wrong key is long since expired.
This prevents sending or receiving encrypted mail.
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: enigmail 2:1.8.2-0ubuntu0.14.04.1
ProcVersionSignature: Ubuntu 3.16.0-46.62~14.04.1-generic 3.16.7-ckt15
Uname: Linux 3.16.0-46-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.12
Architecture: amd64
CurrentDesktop: Unity
Date: Wed Sep 2 14:37:37 2015
InstallationDate: Installed on 2015-03-27 (158 days ago)
InstallationMedia: Ubuntu-Server 14.04.2 LTS "Trusty Tahr" - Release amd64 (20150218.1)
SourcePackage: enigmail
UpgradeStatus: No upgrade log present (probably fresh install)
** Affects: enigmail (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug trusty
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Mozilla
Bugs, which is subscribed to enigmail in Ubuntu.
https://bugs.launchpad.net/bugs/1491360
Title:
New Engimail encrypts with the wrong key
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/enigmail/+bug/1491360/+subscriptions
More information about the Ubuntu-mozillateam-bugs
mailing list