2019-11-07 23:40:32
mitre
PUBLISHED
FireGPG before 0.6 handle user’s passphrase and decrypted cleartext insecurely by writing pre-encrypted cleartext and the users passphrase to disk which may result in the compromise of secure communication or a users’s private key.