[Bug 1100295] Re: MD5 is insecure, add modern hashing
Anders Kaseorg
andersk at mit.edu
Fri Sep 2 21:28:48 UTC 2016
There is nothing wrong with making the request. But it seems the dpkg
developers have not chosen to make it a priority; the most recent work
was from six years ago. This is reasonable because the checksums are
not intended as a security mechanism. So “Won’t Fix” is an accurate
description of the state of this bug.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to dpkg in Ubuntu.
https://bugs.launchpad.net/bugs/1100295
Title:
MD5 is insecure, add modern hashing
Status in Ubuntu GNOME:
Invalid
Status in debsums package in Ubuntu:
Won't Fix
Status in dpkg package in Ubuntu:
Won't Fix
Bug description:
MD5 is insecure due to hash collisions.
Add more modern and reliable hashing algorithms such as SHA-256 or
SHA-512.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu-gnome/+bug/1100295/+subscriptions
More information about the foundations-bugs
mailing list