pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: [pkgsrc-2014Q4] pkgsrc/security/gnupg
Module Name: pkgsrc
Committed By: tron
Date: Mon Mar 9 19:06:32 UTC 2015
Modified Files:
pkgsrc/security/gnupg [pkgsrc-2014Q4]: Makefile PLIST distinfo
Log Message:
Pullup ticket #4635 - requested by he
security/gnupg: security update
Revisions pulled up:
- security/gnupg/Makefile 1.128
- security/gnupg/PLIST 1.28
- security/gnupg/distinfo 1.66
---
Module Name: pkgsrc
Committed By: wiz
Date: Sat Feb 28 00:13:25 UTC 2015
Modified Files:
pkgsrc/security/gnupg: Makefile PLIST distinfo
Log Message:
Update to 1.4.19:
Noteworthy changes in version 1.4.19 (2015-02-27)
-------------------------------------------------
* Use ciphertext blinding for Elgamal decryption [CVE-2014-3591].
See http://www.cs.tau.ac.il/~tromer/radioexp/ for details.
* Fixed data-dependent timing variations in modular exponentiation
[related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks
are Practical].
* Detect faulty use of --verify on detached signatures.
* Changed the PKA method to use CERT records and hashed names.
* New import option "keep-ownertrust".
* Support algorithm names when generating keys using the --command-fd
method.
* Updated many translations.
* Updated build system.
* Fixed a regression in keyserver import
* Fixed argument parsing for option --debug-level.
* Fixed DoS based on bogus and overlong key packets.
* Fixed bugs related to bogus keyrings.
* The usual minor minor bug fixes.
To generate a diff of this commit:
cvs rdiff -u -r1.127 -r1.127.2.1 pkgsrc/security/gnupg/Makefile
cvs rdiff -u -r1.27 -r1.27.6.1 pkgsrc/security/gnupg/PLIST
cvs rdiff -u -r1.65 -r1.65.4.1 pkgsrc/security/gnupg/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Home |
Main Index |
Thread Index |
Old Index