diff options
| author | wiz <wiz@pkgsrc.org> | 2014-06-24 21:53:14 +0000 |
|---|---|---|
| committer | wiz <wiz@pkgsrc.org> | 2014-06-24 21:53:14 +0000 |
| commit | 746bda09cffc7c2f58dcdb4d3a04949fb551428e (patch) | |
| tree | c39cf9d6a9e4d5f9335e4394899c45df1e289f74 /security | |
| parent | 749f641c3f90ab6e35034fc51665df9c58bb1bee (diff) | |
| download | pkgsrc-746bda09cffc7c2f58dcdb4d3a04949fb551428e.tar.gz | |
Update to 2.0.24, security fix:
Noteworthy changes in version 2.0.24 (2014-06-24)
-------------------------------------------------
* gpg: Avoid DoS due to garbled compressed data packets.
* gpg: Screen keyserver responses to avoid importing unwanted keys
from rogue servers.
* gpg: The validity of user ids is now shown by default. To revert
this add "list-options no-show-uid-validity" to gpg.conf.
* gpg: Print more specific reason codes with the INV_RECP status.
* gpg: Allow loading of a cert only key to an OpenPGP card.
* gpg-agent: Make ssh support for ECDSA keys work with Libgcrypt 1.6.
Noteworthy changes in version 2.0.23 (2014-06-03)
-------------------------------------------------
* gpg: Reject signatures made using the MD5 hash algorithm unless the
new option --allow-weak-digest-algos or --pgp2 are given.
* gpg: Do not create a trustdb file if --trust-model=always is used.
* gpg: Only the major version number is by default included in the
armored output.
* gpg: Print a warning if the Gnome-Keyring-Daemon intercepts the
communication with the gpg-agent.
* gpg: The format of the fallback key listing ("gpg KEYFILE") is now more
aligned to the regular key listing ("gpg -k").
* gpg: The option--show-session-key prints its output now before the
decryption of the bulk message starts.
* gpg: New %U expando for the photo viewer.
* gpgsm: Improved handling of re-issued CA certificates.
* scdaemon: Various fixes for pinpad equipped card readers.
* Minor bug fixes.
Diffstat (limited to 'security')
| -rw-r--r-- | security/gnupg2/Makefile | 6 | ||||
| -rw-r--r-- | security/gnupg2/distinfo | 8 |
2 files changed, 6 insertions, 8 deletions
diff --git a/security/gnupg2/Makefile b/security/gnupg2/Makefile index d2f79d18ef8..adacf919cb5 100644 --- a/security/gnupg2/Makefile +++ b/security/gnupg2/Makefile @@ -1,8 +1,7 @@ -# $NetBSD: Makefile,v 1.51 2014/02/12 23:18:32 tron Exp $ +# $NetBSD: Makefile,v 1.52 2014/06/24 21:53:14 wiz Exp $ -DISTNAME= gnupg-2.0.22 +DISTNAME= gnupg-2.0.24 PKGNAME= ${DISTNAME:S/gnupg/gnupg2/} -PKGREVISION= 2 CATEGORIES= security MASTER_SITES= ftp://ftp.gnupg.org/gcrypt/gnupg/ EXTRACT_SUFX= .tar.bz2 @@ -21,7 +20,6 @@ USE_TOOLS+= gmake GNU_CONFIGURE= yes CONFIGURE_ARGS+= --sharedstatedir=${VARBASE} CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR} -CONFIGURE_ARGS+= --without-included-gettext CONFIGURE_ARGS+= --with-pinentry-pgm=${BUILDLINK_PREFIX.pinentry}/bin/pinentry # Sometimes wrong include file gets detected, e.g. for Clang diff --git a/security/gnupg2/distinfo b/security/gnupg2/distinfo index 3257928541c..780d70b2e9a 100644 --- a/security/gnupg2/distinfo +++ b/security/gnupg2/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.29 2013/10/05 13:20:03 wiz Exp $ +$NetBSD: distinfo,v 1.30 2014/06/24 21:53:14 wiz Exp $ -SHA1 (gnupg-2.0.22.tar.bz2) = 9ba9ee288e9bf813e0f1e25cbe06b58d3072d8b8 -RMD160 (gnupg-2.0.22.tar.bz2) = 0d47b3218438c9ddf7f91b73f2a46bbefefdb106 -Size (gnupg-2.0.22.tar.bz2) = 4277117 bytes +SHA1 (gnupg-2.0.24.tar.bz2) = 010e027d5f622778cadc4c124013fe515ed705cf +RMD160 (gnupg-2.0.24.tar.bz2) = 3da40c512d38262dfcd2f50c2f2ff6ce4e9ec791 +Size (gnupg-2.0.24.tar.bz2) = 4301922 bytes SHA1 (patch-ai) = 4445d30150518f71f996e3b368a81523daded2e2 SHA1 (patch-aj) = bfd21504e0d55f99df543912b1cdf2c573de2f98 SHA1 (patch-al) = ef7c698ed102c4e27bbf707ae5d1fce4c2b5d8d4 |