CVS commit: [pkgsrc-2014Q4] pkgsrc/security/libgcrypt

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: [pkgsrc-2014Q4] pkgsrc/security/libgcrypt
From: "Matthias Scheler" <tron%netbsd.org@localhost>
Date: Mon, 9 Mar 2015 19:37:11 +0000

Module Name:    pkgsrc
Committed By:   tron
Date:           Mon Mar  9 19:37:10 UTC 2015

Modified Files:
        pkgsrc/security/libgcrypt [pkgsrc-2014Q4]: Makefile distinfo
Added Files:
        pkgsrc/security/libgcrypt/patches [pkgsrc-2014Q4]:
            patch-random_rndunix.c
Removed Files:
        pkgsrc/security/libgcrypt/patches [pkgsrc-2014Q4]: patch-ab

Log Message:
Pullup ticket #4637 - requested by wiz
security/libgcrypt: security update

Revisions pulled up:
- security/libgcrypt/Makefile                                   1.69-1.70
- security/libgcrypt/distinfo                                   1.55-1.56
- security/libgcrypt/patches/patch-ab                           deleted
- security/libgcrypt/patches/patch-random_rndunix.c             1.1

---
   Module Name: pkgsrc
   Committed By:        wiz
   Date:                Mon Jan  5 21:56:16 UTC 2015

   Modified Files:
        pkgsrc/security/libgcrypt: Makefile distinfo
   Added Files:
        pkgsrc/security/libgcrypt/patches: patch-random_rndunix.c
   Removed Files:
        pkgsrc/security/libgcrypt/patches: patch-ab

   Log Message:
   Replace patch-ab with upstream version, see
   http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=817472358a093438e802380caecf7139406400cf;hp=8c5eee51d9a25b143e41ffb7ff4a6b2a29b82d83

   Bump PKGREVISION.

---
   Module Name: pkgsrc
   Committed By:        wiz
   Date:                Sat Feb 28 00:14:25 UTC 2015

   Modified Files:
        pkgsrc/security/libgcrypt: Makefile distinfo

   Log Message:
   Update to 1.6.3:

   Noteworthy changes in version 1.6.3 (2015-02-27) [C20/A0/R3]
   ------------------------------------------------

    * Use ciphertext blinding for Elgamal decryption [CVE-2014-3591].
      See http://www.cs.tau.ac.il/~tromer/radioexp/ for details.

    * Fixed data-dependent timing variations in modular exponentiation
      [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks
      are Practical].

    * Improved asm support for older toolchains.


To generate a diff of this commit:
cvs rdiff -u -r1.68 -r1.68.2.1 pkgsrc/security/libgcrypt/Makefile
cvs rdiff -u -r1.54 -r1.54.4.1 pkgsrc/security/libgcrypt/distinfo
cvs rdiff -u -r1.5 -r0 pkgsrc/security/libgcrypt/patches/patch-ab
cvs rdiff -u -r0 -r1.1.2.2 \
    pkgsrc/security/libgcrypt/patches/patch-random_rndunix.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [pkgsrc-2014Q4] pkgsrc/textproc/icu
Next by Date: CVS commit: [pkgsrc-2014Q4] pkgsrc/doc
Previous by Thread: CVS commit: [pkgsrc-2014Q4] pkgsrc/textproc/icu
Next by Thread: CVS commit: [pkgsrc-2014Q4] pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index