Navigation:
Browse pkgsrc
(this page)| 2014-06-24 09:35:10 by Thomas Klausner | Files touched by this commit (3) |
Log message: Update to 1.4.17 due to security fix: Noteworthy changes in version 1.4.17 (2014-06-23) ------------------------------------------------- * Avoid DoS due to garbled compressed data packets. * Screen keyserver reponses to avoid import of unwanted keys by rogue servers. * Add hash algorithms to the "sig" records of the colon output. * More specific reason codes for INV_RECP status. * Fixes for PC/SC access on Apple. * Minor bug fixes. |
| 2014-02-13 00:18:57 by Matthias Scheler | Files touched by this commit (1568) |
Log message: Recursive PKGREVISION bump for OpenSSL API version bump. |
| 2013-12-18 19:56:24 by Thomas Klausner | Files touched by this commit (2) |
Log message: Update to 1.4.16: Noteworthy changes in version 1.4.16 (2013-12-18) ------------------------------------------------- * Fixed the RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis attack as described by Genkin, Shamir, and Tromer. See <http://www.cs.tau.ac.il/~tromer/acoustic/>. [CVE-2013-4576] * Put only the major version number by default into armored output. * Do not create a trustdb file if --trust-model=always is used. * Print the keyid for key packets with --list-packets. * Changed modular exponentiation algorithm to recover from a small performance loss due to a change in 1.4.14. |
| 2013-10-27 01:30:29 by Thomas Klausner | Files touched by this commit (1) |
Log message: Remove obsolete --with-static-rnd=auto as suggested by Andreas Gustafsson in PR 48345. |
| 2013-10-05 15:19:51 by Thomas Klausner | Files touched by this commit (2) |
Log message:
Update to 1.4.15:
Noteworthy changes in version 1.4.15 (2013-10-04)
-------------------------------------------------
* Fixed possible infinite recursion in the compressed packet
parser. [CVE-2013-4402]
* Protect against rogue keyservers sending secret keys.
* Use 2048 bit also as default for batch key generation.
* Minor bug fixes.
|
| 2013-07-25 13:50:45 by Thomas Klausner | Files touched by this commit (3) |
Log message:
Update to 1.4.14:
Noteworthy changes in version 1.4.14 (2013-07-25)
-------------------------------------------------
* Mitigate the Yarom/Falkner flush+reload side-channel attack on
RSA secret keys. See <http://eprint.iacr.org/2013/448>.
* Fixed IDEA for big-endian CPUs
* Improved the diagnostics for failed keyserver lockups.
* Minor bug and portability fixes.
|
| 2013-07-15 04:02:29 by Ryo ONODERA | Files touched by this commit (177) |
Log message: * .include "../../devel/readline/buildlink3.mk" with USE_GNU_READLINE=yes are replaced with .include "../../devel/readline/buildlink3.mk", and USE_GNU_READLINE are removed, * .include "../../devel/readline/buildlink3.mk" without USE_GNU_READLINE are replaced with .include "../../mk/readline.buildlink3.mk". |
| 2013-05-10 22:18:39 by Taylor R Campbell | Files touched by this commit (1) |
Log message: Fix cross-build of gnupg with CC_FOR_BUILD=NATIVE_CC. |
| 2013-02-09 16:49:56 by Thomas Klausner | Files touched by this commit (1) |
Log message: Remove obsolete sentence about idea. |
2013-02-07 00:24:19 by Jonathan Perkin | Files touched by this commit (1351) |  |
Log message: PKGREVISION bumps for the security/openssl 1.0.1d update. |
New packages: