lp://staging/ubuntu/utopic-security/gnupg2
- Get this branch:
- bzr branch lp://staging/ubuntu/utopic-security/gnupg2
Branch merges
Branch information
Recent revisions
- 28. By Marc Deslauriers
-
* Fix screening responses from keyservers (LP: #1421640)
- d/p/0002-Make-screening- of-keyserver- result- work-with- multi-k. patch
- d/p/0003-Add-kbnode_ t-for-easier- backporting. patch
- d/p/0004-gpg-Fix- regression- due-to- the-keyserver- import- filte.patch
* Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
- d/p/Add-build-and- runtime- support- for-larger- RSA-key. patch
- debian/rules: build with --enable-large-secmem
* SECURITY UPDATE: invalid memory read via invalid keyring
- debian/patches/ CVE-2015- 1606.patch: skip all packets not allowed in
a keyring in g10/keyring.c.
- CVE-2015-1606
* SECURITY UPDATE: memcpy with overlapping ranges
- debian/patches/ CVE-2015- 1607.patch: use inline functions to convert
buffer data to scalars in common/iobuf.c, g10/build-packet.c,
g10/getkey.c, g10/keyid.c, g10/main.h, g10/misc.c,
g10/parse-packet. c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
kbx/keybox- dump.c, kbx/keybox- openpgp. c, kbx/keybox- search. c,
kbx/keybox- update. c, scd/apdu.c, scd/app-openpgp.c,
scd/ccid-driver. c, scd/pcsc-wrapper.c, tools/ccidmon.c.
- CVE-2015-1607 - 26. By Marc Deslauriers
-
* Merge from Debian, remaining changes:
- Drop sh prefix from openpgp test environment as it leads to exec
invocations of sh /bin/bash leading to syntax errors from sh. Fixes
FTBFS detected in Ubuntu saucy archive rebuild.
- Add udev rules to give gpg access to some smartcard readers;
Debian #543217.
- debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
- Add upstart user job for gpg-agent. - 25. By Dimitri John Ledkov
-
Don't start gpg-agent upstart user job, if there is one available
already. - 24. By Dimitri John Ledkov
-
* Merge from Debian, remaining changes:
- Drop sh prefix from openpgp test environment as it leads to exec
invocations of sh /bin/bash leading to syntax errors from sh. Fixes
FTBFS detected in Ubuntu saucy archive rebuild.
- Add udev rules to give gpg access to some smartcard readers;
Debian #543217.
- debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
- Add upstart user job for gpg-agent. - 23. By Dimitri John Ledkov
-
* Merge from Debian, remaining changes:
- Drop sh prefix from openpgp test environment as it leads to exec
invocations of sh /bin/bash leading to syntax errors from sh. Fixes
FTBFS detected in Ubuntu saucy archive rebuild.
- Add udev rules to give gpg access to some smartcard readers;
Debian #543217.
- debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
- Add upstart user job for gpg-agent. - 22. By Marc Deslauriers
-
* SECURITY UPDATE: incorrect no-usage-permitted flag handling
- debian/patches/ CVE-2013- 4351.patch: correctly handle empty key flags
in g10/getkey.c, g10/keygen.c, include/cipher.h.
- CVE-2013-4351
* SECURITY UPDATE: denial of service via infinite recursion
- debian/patches/ CVE-2013- 4402.patch: set limits on number of filters
and nested packets in common/iobuf.c, g10/mainproc.c.
- CVE-2013-4402 - 21. By Andy Whitcroft
-
Drop sh prefix from openpgp test environment as it leads to exec
invocations of sh /bin/bash leading to syntax errors from sh.
Fixes FTBFS detected in Ubuntu saucy archive rebuild. - 20. By Stéphane Graber
-
* Resynchronize on Debian, remaining changes:
- Add udev rules to give gpg access to some smartcard readers;
Debian #543217.
. debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
- Add upstart user job for gpg-agent.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/ubuntu/vivid/gnupg2