zlacker
[return to "F-Droid Fake Signer PoC"]
◧
1. Retr0i+U7
[view]
[source]
2025-01-03 23:53:49
>>pabs3+(OP)
What's the practical impact?
◧◩
2. udev40+VJ
[view]
[source]
2025-01-04 07:30:39
>>Retr0i+U7
A malicious app can bypass the certificate pinning feature to install the app. More info:
https://gitlab.com/fdroid/fdroidserver/-/issues/1128
[go to top]