[Rpm-maint] [rpm-software-management/rpm] GPG key interpreted as PGP key (Issue #2410)

Ricky-Tigg notifications at github.com
Sat Mar 4 12:58:32 UTC 2023


Hello. A **non-manually** created fake RPM package is reported as follows
```
$ rpm -qi gpg-pubkey-5323552a-6112bcdc | awk 'NF' | sed -n '1,17p;$p'
Name        : gpg-pubkey
Version     : 5323552a
Release     : 6112bcdc
Architecture: (none)
Install Date: Sat Nov  5 11:14:03 2022
Group       : Public Keys
Size        : 0
License     : pubkey
Signature   : (none)
Source RPM  : (none)
Build Date  : Tue Aug 10 20:52:28 2021
Build Host  : localhost
Packager    : Fedora (37) <fedora-37-primary at fedoraproject.org>
Summary     : Fedora (37) <fedora-37-primary at fedoraproject.org> public key
Description :
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: rpm-4.18.0
-----END PGP PUBLIC KEY BLOCK-----
```
Despite the mention _gpg_ as part of the package name and what it is suggesting to us and indicating to the running OS, it is interpreted as _PGP_. What could cause that misinterpretation?

-- 
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/2410
You are receiving this because you are subscribed to this thread.

Message ID: <rpm-software-management/rpm/issues/2410 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20230304/d9d8dd3f/attachment.html>


More information about the Rpm-maint mailing list