From 69eee6b7b4606fb72b285adf881bf525226fd71b Mon Sep 17 00:00:00 2001
From: Wytze van der Raay <wytze@cacert.org>
Date: Thu, 21 Aug 2014 14:35:40 +0000
Subject: [PATCH] Fix for https://bugs.cacert.org/view.php?id=1292 "Issuing
 Certificates with "Public Exponent: 1 (0x1)""

---
 includes/lib/check_weak_key.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/includes/lib/check_weak_key.php b/includes/lib/check_weak_key.php
index 8ad2ccf..59c6cd6 100644
--- a/includes/lib/check_weak_key.php
+++ b/includes/lib/check_weak_key.php
@@ -173,7 +173,7 @@ function checkWeakKeyText($text)
 			$exponent = $exponent[1]; // exponent might be very big =>
 			//handle as string using bc*()
 
-			if (bccomp($exponent, "3") === 0)
+			if (bccomp($exponent, "65537") < 0)
 			{
 				return sprintf(_("The keys you use might be insecure. ".
 							"Although there is currently no known attack for ".