Sks Keyserver Project: >> Sks Keyserver >> 1.1.6 Security Vulnerabilities
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.
CVSS Score
7.5
EPSS Score
0.007
Published
2019-06-29