Security Vulnerability in the Updater
Belphemur opened this issue · 2 comments
Belphemur commented
The way the check for signature and certificate in the updater is naive.
I've been pointed out it could (with difficulty) be used against the user.
Found by @JarLob
Belphemur commented
@all-contributors please add @JarLob for security
allcontributors commented
I've put up a pull request to add @JarLob! 🎉