pkgsrc-changes: CVS commit: [pkgsrc-2005Q1] pkgsrc/security/gnupg

Subject: CVS commit: [pkgsrc-2005Q1] pkgsrc/security/gnupg
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 03/26/2005 10:53:35
Module Name:	pkgsrc
Committed By:	snj
Date:		Sat Mar 26 10:53:35 UTC 2005

Modified Files:
	pkgsrc/security/gnupg [pkgsrc-2005Q1]: Makefile PLIST distinfo
	    options.mk

Log Message:
Pullup ticket 391 - requested by Thomas Klausner
security fix for gnupg

Revisions pulled up:
- pkgsrc/security/gnupg/Makefile	1.74
- pkgsrc/security/gnupg/PLIST		1.15
- pkgsrc/security/gnupg/distinfo	1.34
- pkgsrc/security/gnupg/options.mk	1.2

  Module Name:	pkgsrc
  Committed By:	wiz
  Date:		Tue Mar 22 17:50:55 UTC 2005

  Modified Files:
          pkgsrc/security/gnupg: Makefile PLIST distinfo options.mk

  Log Message:
  Update to 1.4.1:

  Noteworthy changes in version 1.4.1 (2005-03-15)
  ------------------------------------------------

      * New --rfc2440-text option which controls how text is handled in
        signatures.  This is in response to some problems seen with
        certain PGP/MIME mail clients and GnuPG version 1.4.0.  More
        details about this are available at
        <http://lists.gnupg.org/pipermail/gnupg-users/2005-January/024408.html>.

      * New "import-unusable-sigs" and "export-unusable-sigs" tags for
        --import-options and --export-options.  These are off by
        default, and cause GnuPG to not import or export key signatures
        that are not usable (e.g. expired signatures).

      * New experimental HTTP, HTTPS, FTP, and FTPS keyserver helper
        that uses the cURL library <http://curl.haxx.se> to retrieve
        keys.  This is disabled by default, but may be enabled with the
        configure option --with-libcurl.  Without this option, the
        existing HTTP code is used for HTTP, and HTTPS, FTP, and FTPS
        are not supported.

        [enabled with the "curl" option for the package]

      * When running a --card-status or --card-edit and a public key is
        available, missing secret key stubs will be created on the fly.
        Details of the key are listed too.

      * The implicit packet dumping in double verbose mode is now sent
        to stderr and not to stdout.

      * Added countermeasures against the Mister/Zuccherato CFB attack
        <http://eprint.iacr.org/2005/033>.

      * Add new --edit-key command "bkuptocard" to allow restoring a
        card key from a backup.

      * The "fetch" command of --card-edit now retrieves the key using
        the default keyserver if no URL has been stored on the card.

      * New configure option --enable-noexecstack.

  Also, gpgkeys_mailto is not installed any longer, dropping the
  dependency on perl.


To generate a diff of this commit:
cvs rdiff -r1.73 -r1.73.2.1 pkgsrc/security/gnupg/Makefile
cvs rdiff -r1.14 -r1.14.2.1 pkgsrc/security/gnupg/PLIST
cvs rdiff -r1.33 -r1.33.2.1 pkgsrc/security/gnupg/distinfo
cvs rdiff -r1.1 -r1.1.2.1 pkgsrc/security/gnupg/options.mk

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.