Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Borg |
Borg_project |
* |
1.0.8 (including) |
References