Critical Security Flaw Uncovered in OpenPGP.js, Undermining Email Public Key Encryption

2025-05-21 / Read about 0 minute

Author：小编

Security researchers at Codean Labs, a leading cybersecurity firm, have discovered a severe security vulnerability in OpenPGP.js, a widely-used open-source encryption library. This vulnerability enables the forgery of signatures and encryption messages, thereby severely compromising the integrity of email public key encryption technology. In response, ProtonMail, a key user and maintainer of the encryption library, has promptly released updated versions to mitigate the issue. The affected versions range from OpenPGP.js 5.0.1 to 5.11.2 and 6.0.0-alpha to 6.1.0. Users are strongly recommended to upgrade to versions 5.11.3 and 6.1.1 to ensure the security of their communications.

Previous page：RISC-V's Unstoppable Growth Over 15 Years

Next page：Cathie Wood's Ark Invest Buys TSMC Shares for Two ...

Return to List

Hot Reading

1 day ago

Ouster’s new color lidar is coming to replace cameras

2 day ago

TechCrunch Mobility: How do you issue a ticket to a robotaxi?

2 day ago

This tiny, magnetic e-reader could stop you from doomscrolling

1 day ago

Samsung Galaxy Glasses incoming – here's what we know so far