summaryrefslogtreecommitdiff
path: root/misc
diff options
context:
space:
mode:
authorwiz <wiz@pkgsrc.org>2006-12-06 23:00:46 +0000
committerwiz <wiz@pkgsrc.org>2006-12-06 23:00:46 +0000
commite162ec1863e5f13c05c938756b85f4fe92e57421 (patch)
treeea166b36607bc6cbb49d011bcac7536dd0076518 /misc
parent01a799bb36910fdc0c73f298ebca7069aae409af (diff)
downloadpkgsrc-e162ec1863e5f13c05c938756b85f4fe92e57421.tar.gz
Update to 1.4.6:
Noteworthy changes in version 1.4.6 (2006-12-06) ------------------------------------------------ * Fixed a serious and exploitable bug in processing encrypted packages. [CVE-2006-6235]. * Fixed a buffer overflow in gpg. [bug#728, CVE-2006-6169] (already fixed in pkgsrc) * Fixed a bug while decrypting certain compressed and encrypted messages. [bug#537] * Added --s2k-count to set the number of times passphrase mangling is repeated. The default is 65536 times. * Added --passphrase-repeat to set the number of times GPG will prompt for a new passphrase to be repeated. This is useful to help memorize a new passphrase. The default is 1 repetition. * Added a GPL license exception to the keyserver helper programs gpgkeys_ldap, gpgkeys_curl, and gpgkeys_hkp, to clarify any potential questions about the ability to distribute binaries that link to the OpenSSL library. GnuPG does not link directly to OpenSSL, but libcurl (used for HKP, HTTP, and FTP) and OpenLDAP (used for LDAP) may. Note that this license exception is considered a bug fix and is intended to forgive any violations pertaining to this issue, including those that may have occurred in the past. * Man pages are now build from the same source as those of GnuPG-2.
Diffstat (limited to 'misc')
0 files changed, 0 insertions, 0 deletions