Author: Ubuntu Git Importer
Author Date: 2018-10-08 22:53:29 UTC

DSC file for 2.2.10-3

Author: dkg
Author Date: 2018-10-08 15:36:01 UTC

Import patches-unapplied version 2.2.10-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2f2f7c10b862335db82d82972db20bc0ab6297a5

New changelog entries:
  [ Bjarni Ingi Gislason ]
  * clean up nroff for gpg-check-pattern.1 (Closes: #900247)
  [ Daniel Kahn Gillmor ]
  * backport fix for subkey binding sigs

Author: dkg
Author Date: 2018-10-08 15:36:01 UTC

Import patches-unapplied version 2.2.10-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2f2f7c10b862335db82d82972db20bc0ab6297a5

New changelog entries:
  [ Bjarni Ingi Gislason ]
  * clean up nroff for gpg-check-pattern.1 (Closes: #900247)
  [ Daniel Kahn Gillmor ]
  * backport fix for subkey binding sigs

Author: Ubuntu Git Importer
Author Date: 2018-09-04 01:05:21 UTC

DSC file for 2.2.8-3ubuntu1

Author: Jeremy Bicha
Author Date: 2018-09-04 00:43:20 UTC

Import patches-unapplied version 2.2.8-3ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 4e4918e3f34149fbe6ac1a080c4b364e45061e1a

New changelog entries:
  * Sync with Debian. Remaining changes:
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
      (debian/patches/dirmngr-honor-http-proxy.patch)
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.

Author: Jeremy Bicha
Author Date: 2018-09-04 00:43:20 UTC

Import patches-unapplied version 2.2.8-3ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 4e4918e3f34149fbe6ac1a080c4b364e45061e1a

New changelog entries:
  * Sync with Debian. Remaining changes:
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
      (debian/patches/dirmngr-honor-http-proxy.patch)
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.

Author: Jeremy Bicha
Author Date: 2018-09-04 00:43:20 UTC

Import patches-unapplied version 2.2.8-3ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 4e4918e3f34149fbe6ac1a080c4b364e45061e1a

New changelog entries:
  * Sync with Debian. Remaining changes:
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
      (debian/patches/dirmngr-honor-http-proxy.patch)
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.

Author: Jeremy Bicha
Author Date: 2018-09-04 00:43:20 UTC

Import patches-unapplied version 2.2.8-3ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 4e4918e3f34149fbe6ac1a080c4b364e45061e1a

New changelog entries:
  * Sync with Debian. Remaining changes:
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
      (debian/patches/dirmngr-honor-http-proxy.patch)
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.

Author: Salvatore Bonaccorso
Author Date: 2018-06-08 18:12:24 UTC

Import patches-unapplied version 2.1.18-8~deb9u2 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: fdf9109e8a127cea37d41501f37a0f2c0fe0db38

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * gpg: Sanitize diagnostic with the original file name (CVE-2018-12020)

Author: Salvatore Bonaccorso
Author Date: 2018-06-08 18:58:33 UTC

Import patches-unapplied version 2.0.26-6+deb8u2 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 636fe56de74107fb4cc0ff291a4cc6fe9b82f614

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * gpg: Sanitize diagnostic with the original file name (CVE-2018-12020)

Author: Steve Beattie
Author Date: 2018-06-14 18:05:25 UTC

Import patches-unapplied version 2.0.22-3ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 63f79294a95f930e72fba93d6fb23b2d332615dc

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020

Author: Steve Beattie
Author Date: 2018-06-14 18:05:25 UTC

Import patches-unapplied version 2.0.22-3ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 63f79294a95f930e72fba93d6fb23b2d332615dc

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020

Author: Steve Beattie
Author Date: 2018-06-14 18:05:25 UTC

Import patches-unapplied version 2.0.22-3ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 63f79294a95f930e72fba93d6fb23b2d332615dc

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020

Author: Steve Beattie
Author Date: 2018-06-14 17:41:36 UTC

Import patches-unapplied version 2.1.11-6ubuntu2.1 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 6b526ee975b5c54f086f449b91e201fb9cbcadea

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * backport patch to handle the tofu tests expiring in 2016
    - d/p/0006-tests-openpgp-Fake-the-system-time-for-the-tofu-test.patch

Author: Steve Beattie
Author Date: 2018-06-14 17:41:36 UTC

Import patches-unapplied version 2.1.11-6ubuntu2.1 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 6b526ee975b5c54f086f449b91e201fb9cbcadea

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * backport patch to handle the tofu tests expiring in 2016
    - d/p/0006-tests-openpgp-Fake-the-system-time-for-the-tofu-test.patch

Author: Steve Beattie
Author Date: 2018-06-14 17:41:36 UTC

Import patches-unapplied version 2.1.11-6ubuntu2.1 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 6b526ee975b5c54f086f449b91e201fb9cbcadea

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * backport patch to handle the tofu tests expiring in 2016
    - d/p/0006-tests-openpgp-Fake-the-system-time-for-the-tofu-test.patch

Author: Steve Beattie
Author Date: 2018-06-09 21:15:54 UTC

Import patches-unapplied version 2.1.15-1ubuntu8.1 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 87555e174a078aa53d500a2026a9d5437b3bbf45

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020

Author: Steve Beattie
Author Date: 2018-06-09 21:15:54 UTC

Import patches-unapplied version 2.1.15-1ubuntu8.1 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 87555e174a078aa53d500a2026a9d5437b3bbf45

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020

Author: Steve Beattie
Author Date: 2018-06-11 04:54:05 UTC

Import patches-unapplied version 2.2.4-1ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: bc713ad3510b6ffe547f9ae53b5b08c6c6697fae

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/from-master/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * SECURITY UPDATE: certify public keys without a certify key present
    when using a smartcard.
    - debian/patches/from-master/CVE-2018-9234-1.patch,
    - debian/patches/from-master/CVE-2018-9234-2.patch: Check that a key
      may do certifications.
    - CVE-2018-9234
  * Always use MDC encryption mode regardless of the cipher algorithm
    or any preferences. The --rfc2440 option can be used to create
    a message without an MDC.
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
  * Decryption of messages not using the MDC mode into a hard
    failure even if a legacy cipher algorithm was used. The
    option --ignore-mdc-error can be used to turn this failure
    into a warning.
    - debian/patches/from-master/0001-gpg-Turn-no-mdc-warn-into-a-NOP.patch
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
    - debian/patches/from-master/0004-gpg-Print-a-hint-on-how-to-decrypt-a-non-mdc-message.patch

Author: Steve Beattie
Author Date: 2018-06-11 04:54:05 UTC

Import patches-unapplied version 2.2.4-1ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: bc713ad3510b6ffe547f9ae53b5b08c6c6697fae

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/from-master/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * SECURITY UPDATE: certify public keys without a certify key present
    when using a smartcard.
    - debian/patches/from-master/CVE-2018-9234-1.patch,
    - debian/patches/from-master/CVE-2018-9234-2.patch: Check that a key
      may do certifications.
    - CVE-2018-9234
  * Always use MDC encryption mode regardless of the cipher algorithm
    or any preferences. The --rfc2440 option can be used to create
    a message without an MDC.
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
  * Decryption of messages not using the MDC mode into a hard
    failure even if a legacy cipher algorithm was used. The
    option --ignore-mdc-error can be used to turn this failure
    into a warning.
    - debian/patches/from-master/0001-gpg-Turn-no-mdc-warn-into-a-NOP.patch
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
    - debian/patches/from-master/0004-gpg-Print-a-hint-on-how-to-decrypt-a-non-mdc-message.patch

Author: Steve Beattie
Author Date: 2018-06-11 04:54:05 UTC

Import patches-unapplied version 2.2.4-1ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: bc713ad3510b6ffe547f9ae53b5b08c6c6697fae

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/from-master/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * SECURITY UPDATE: certify public keys without a certify key present
    when using a smartcard.
    - debian/patches/from-master/CVE-2018-9234-1.patch,
    - debian/patches/from-master/CVE-2018-9234-2.patch: Check that a key
      may do certifications.
    - CVE-2018-9234
  * Always use MDC encryption mode regardless of the cipher algorithm
    or any preferences. The --rfc2440 option can be used to create
    a message without an MDC.
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
  * Decryption of messages not using the MDC mode into a hard
    failure even if a legacy cipher algorithm was used. The
    option --ignore-mdc-error can be used to turn this failure
    into a warning.
    - debian/patches/from-master/0001-gpg-Turn-no-mdc-warn-into-a-NOP.patch
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
    - debian/patches/from-master/0004-gpg-Print-a-hint-on-how-to-decrypt-a-non-mdc-message.patch

Author: Steve Beattie
Author Date: 2018-06-09 21:15:54 UTC

Import patches-unapplied version 2.1.15-1ubuntu8.1 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 87555e174a078aa53d500a2026a9d5437b3bbf45

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020

Author: Ubuntu Git Importer
Author Date: 2018-03-06 22:53:19 UTC

pristine-tar data for gnupg2_2.2.4.orig.tar.bz2

Author: Ubuntu Git Importer
Author Date: 2018-03-06 22:05:42 UTC

pristine-tar data for gnupg2_2.2.5.orig.tar.bz2

Author: Dimitri John Ledkov
Author Date: 2018-01-11 13:33:17 UTC

Import patches-unapplied version 2.2.4-1ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 92439f5f808cfe72f7f1e0628c93cb6903101fd7

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - debian/gnupg2.udev:
      - Add udev rules to give gpg access to some smartcard readers;
        Debian #543217.
      - udev rules to set ACLs on SCM smartcard readers.
    - Add breaks for software-properties-common at 0.96.24.3 or lower.
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.
  * Dropped changes:
    - Removed user session upstart support.
    - Removed gpg-agent.service changes, use Debian's environment generator instead.
    - Patch to set GNUPGHOME for tests, fixed in debian/upstream.

Author: Dimitri John Ledkov
Author Date: 2018-01-11 13:33:17 UTC

Import patches-unapplied version 2.2.4-1ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 92439f5f808cfe72f7f1e0628c93cb6903101fd7

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - debian/gnupg2.udev:
      - Add udev rules to give gpg access to some smartcard readers;
        Debian #543217.
      - udev rules to set ACLs on SCM smartcard readers.
    - Add breaks for software-properties-common at 0.96.24.3 or lower.
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.
  * Dropped changes:
    - Removed user session upstart support.
    - Removed gpg-agent.service changes, use Debian's environment generator instead.
    - Patch to set GNUPGHOME for tests, fixed in debian/upstream.

Author: Tiago Stürmer Daitx
Author Date: 2017-10-11 20:20:46 UTC

Import patches-unapplied version 2.1.15-1ubuntu8 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 57e55783eac250a391a4f0167d6840bdd12599e4

New changelog entries:
  * debian/patches/0005-set-gnupghome-for-tests.patch:
    - set GNUPGHOME to a directory under the build directory as the
      default value relies on $HOME which shouldn't be used during
      the package build. LP: #1722939.

Author: Tiago Stürmer Daitx
Author Date: 2017-10-11 20:20:46 UTC

Import patches-unapplied version 2.1.15-1ubuntu8 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 57e55783eac250a391a4f0167d6840bdd12599e4

New changelog entries:
  * debian/patches/0005-set-gnupghome-for-tests.patch:
    - set GNUPGHOME to a directory under the build directory as the
      default value relies on $HOME which shouldn't be used during
      the package build. LP: #1722939.

Author: dkg
Author Date: 2017-08-07 05:17:19 UTC

Import patches-unapplied version 2.1.22-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: c2f37d907d1c3f45be7ea455829cb52ea66d2d21

New changelog entries:
  * New upstream release
  * refreshed patches
  * pulled a few bugfix patches from upstream
  * simplify systemd user units

Author: Dimitri John Ledkov
Author Date: 2017-03-29 15:15:15 UTC

Import patches-unapplied version 2.1.15-1ubuntu7 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 4d97139c9e4ef54a9c71fce81f82a10e519c903e

New changelog entries:
  * gpg-agent.conf: use XDG_RUNTIME_DIR for ssh-agent socket, in the
    upstart user session job too. LP: #1675925.

Author: Dimitri John Ledkov
Author Date: 2017-03-29 15:15:15 UTC

Import patches-unapplied version 2.1.15-1ubuntu7 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 4d97139c9e4ef54a9c71fce81f82a10e519c903e

New changelog entries:
  * gpg-agent.conf: use XDG_RUNTIME_DIR for ssh-agent socket, in the
    upstart user session job too. LP: #1675925.

Author: Dimitri John Ledkov
Author Date: 2017-03-29 15:15:15 UTC

Import patches-unapplied version 2.1.15-1ubuntu7 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 4d97139c9e4ef54a9c71fce81f82a10e519c903e

New changelog entries:
  * gpg-agent.conf: use XDG_RUNTIME_DIR for ssh-agent socket, in the
    upstart user session job too. LP: #1675925.

Author: Dimitri John Ledkov
Author Date: 2016-10-07 10:20:28 UTC

Import patches-unapplied version 2.1.15-1ubuntu6 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: bc6c77d6f5ccd80c1df41198b2f530219e164f5a

New changelog entries:
  * gpg-agent.service: use XDG_RUNTIME_DIR for ssh-agent socket, instead
    of GNUPGHOME. LP: #1631320.

Author: Dimitri John Ledkov
Author Date: 2016-10-07 10:20:28 UTC

Import patches-unapplied version 2.1.15-1ubuntu6 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: bc6c77d6f5ccd80c1df41198b2f530219e164f5a

New changelog entries:
  * gpg-agent.service: use XDG_RUNTIME_DIR for ssh-agent socket, instead
    of GNUPGHOME. LP: #1631320.

Author: Dimitri John Ledkov
Author Date: 2016-10-07 10:20:28 UTC

Import patches-unapplied version 2.1.15-1ubuntu6 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: bc6c77d6f5ccd80c1df41198b2f530219e164f5a

New changelog entries:
  * gpg-agent.service: use XDG_RUNTIME_DIR for ssh-agent socket, instead
    of GNUPGHOME. LP: #1631320.

Author: Dimitri John Ledkov
Author Date: 2016-04-08 07:55:10 UTC

Import patches-unapplied version 2.1.11-6ubuntu2 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: aaa3130b8095a00597ff43d11e7dbe279650c18f

New changelog entries:
  * Fix upstart user-session integration with new pinentry:
  - restart gpg-agent, once dbus is started, such that agent has DBUS
    session environemnt set and can connect to the pinentry-gnome3 Closes:
    #790316 Closes: #795368 LP: #1566928
  - use gpgconf to launch/kill gpg-agent and to check settings

Author: Dimitri John Ledkov
Author Date: 2016-04-08 07:55:10 UTC

Import patches-unapplied version 2.1.11-6ubuntu2 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: aaa3130b8095a00597ff43d11e7dbe279650c18f

New changelog entries:
  * Fix upstart user-session integration with new pinentry:
  - restart gpg-agent, once dbus is started, such that agent has DBUS
    session environemnt set and can connect to the pinentry-gnome3 Closes:
    #790316 Closes: #795368 LP: #1566928
  - use gpgconf to launch/kill gpg-agent and to check settings

Author: Iain Lane
Author Date: 2015-07-13 12:18:38 UTC

Import patches-unapplied version 2.0.28-3ubuntu1 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 489e6455e28e98d3f0c41b336c4d230561b8ad34

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh. Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
    - debian/control: drop dirmngr to Suggests as it is in universe.

Author: Iain Lane
Author Date: 2015-07-13 12:18:38 UTC

Import patches-unapplied version 2.0.28-3ubuntu1 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 489e6455e28e98d3f0c41b336c4d230561b8ad34

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh. Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
    - debian/control: drop dirmngr to Suggests as it is in universe.

Author: Iain Lane
Author Date: 2015-07-13 12:18:38 UTC

Import patches-unapplied version 2.0.28-3ubuntu1 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 489e6455e28e98d3f0c41b336c4d230561b8ad34

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh. Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
    - debian/control: drop dirmngr to Suggests as it is in universe.

Author: Marc Deslauriers
Author Date: 2015-03-27 12:16:53 UTC

Import patches-unapplied version 2.0.24-1ubuntu2.2 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 3853d6d3f29cea0533a5b833925f264d5c2bfb0a

New changelog entries:
  * Fix screening responses from keyservers (LP: #1421640)
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607

Author: Marc Deslauriers
Author Date: 2015-03-27 12:16:53 UTC

Import patches-unapplied version 2.0.24-1ubuntu2.2 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 3853d6d3f29cea0533a5b833925f264d5c2bfb0a

New changelog entries:
  * Fix screening responses from keyservers (LP: #1421640)
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607

Author: Marc Deslauriers
Author Date: 2015-03-27 12:16:53 UTC

Import patches-unapplied version 2.0.24-1ubuntu2.2 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 3853d6d3f29cea0533a5b833925f264d5c2bfb0a

New changelog entries:
  * Fix screening responses from keyservers (LP: #1421640)
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607

Author: Marc Deslauriers
Author Date: 2015-03-27 12:20:03 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.12.04.6 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: f89e25b82f0ebb1dbeaa3fab05fe0246b24f533a

New changelog entries:
  * Screen responses from keyservers (LP: #1409117)
    - d/p/0001-Screen-keyserver-responses.patch
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keygen.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607

Author: Marc Deslauriers
Author Date: 2015-03-27 12:20:03 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.12.04.6 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: f89e25b82f0ebb1dbeaa3fab05fe0246b24f533a

New changelog entries:
  * Screen responses from keyservers (LP: #1409117)
    - d/p/0001-Screen-keyserver-responses.patch
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keygen.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607

Author: Marc Deslauriers
Author Date: 2015-03-27 12:20:03 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.12.04.6 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: f89e25b82f0ebb1dbeaa3fab05fe0246b24f533a

New changelog entries:
  * Screen responses from keyservers (LP: #1409117)
    - d/p/0001-Screen-keyserver-responses.patch
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keygen.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607

Author: Marc Deslauriers
Author Date: 2015-03-11 12:25:01 UTC

Import patches-unapplied version 2.0.26-6ubuntu1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: cc8ae5ae34d7cfd32828f2f3e89b0abfe4519f48

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh. Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
    - debian/control: drop dirmngr to Suggests as it is in universe.

Author: Marc Deslauriers
Author Date: 2015-03-11 12:25:01 UTC

Import patches-unapplied version 2.0.26-6ubuntu1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: cc8ae5ae34d7cfd32828f2f3e89b0abfe4519f48

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh. Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
    - debian/control: drop dirmngr to Suggests as it is in universe.

Author: Marc Deslauriers
Author Date: 2015-03-11 12:25:01 UTC

Import patches-unapplied version 2.0.26-6ubuntu1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: cc8ae5ae34d7cfd32828f2f3e89b0abfe4519f48

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh. Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
    - debian/control: drop dirmngr to Suggests as it is in universe.

Author: Marc Deslauriers
Author Date: 2014-07-29 15:55:05 UTC

Import patches-unapplied version 2.0.24-1ubuntu2 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 82911a70956e14699e26fdbeae4598dbee349ff7

New changelog entries:
  * debian/control: drop dirmngr to Suggests as it is in universe.

Author: Marc Deslauriers
Author Date: 2014-07-29 15:55:05 UTC

Import patches-unapplied version 2.0.24-1ubuntu2 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 82911a70956e14699e26fdbeae4598dbee349ff7

New changelog entries:
  * debian/control: drop dirmngr to Suggests as it is in universe.

Author: Eric Dorland
Author Date: 2014-06-26 04:30:48 UTC

Import patches-unapplied version 2.0.19-2+deb7u2 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 95bcc248b6c2e3f15aa4843fc0ad04816eff5157

New changelog entries:
  * debian/patches/06-cve-2014-4617.diff: Fixes CVE-2014-4617 "infinite
    loop when decompressing data packets". (Closes: #752498)

Author: Marc Deslauriers
Author Date: 2014-06-26 13:21:08 UTC

Import patches-unapplied version 2.0.14-1ubuntu1.7 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 066ed79ff8124898e476643582f1366d91de983d

New changelog entries:
  * SECURITY UPDATE: denial of service via uncompressing garbled packets
    - debian/patches/CVE-2014-4617.patch: limit number of extra bytes in
      g10/compress.c.
    - CVE-2014-4617

Author: Marc Deslauriers
Author Date: 2014-06-26 13:21:08 UTC

Import patches-unapplied version 2.0.14-1ubuntu1.7 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 066ed79ff8124898e476643582f1366d91de983d

New changelog entries:
  * SECURITY UPDATE: denial of service via uncompressing garbled packets
    - debian/patches/CVE-2014-4617.patch: limit number of extra bytes in
      g10/compress.c.
    - CVE-2014-4617

Author: Marc Deslauriers
Author Date: 2014-06-26 13:20:05 UTC

Import patches-unapplied version 2.0.20-1ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 68a0a65e586719f70c93ce5eae515c43e403a69e

New changelog entries:
  * SECURITY UPDATE: denial of service via uncompressing garbled packets
    - debian/patches/CVE-2014-4617.patch: limit number of extra bytes in
      g10/compress.c.
    - CVE-2014-4617

Author: Marc Deslauriers
Author Date: 2014-06-26 13:20:05 UTC

Import patches-unapplied version 2.0.20-1ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 68a0a65e586719f70c93ce5eae515c43e403a69e

New changelog entries:
  * SECURITY UPDATE: denial of service via uncompressing garbled packets
    - debian/patches/CVE-2014-4617.patch: limit number of extra bytes in
      g10/compress.c.
    - CVE-2014-4617

Author: Marc Deslauriers
Author Date: 2014-06-26 13:20:05 UTC

Import patches-unapplied version 2.0.20-1ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 68a0a65e586719f70c93ce5eae515c43e403a69e

New changelog entries:
  * SECURITY UPDATE: denial of service via uncompressing garbled packets
    - debian/patches/CVE-2014-4617.patch: limit number of extra bytes in
      g10/compress.c.
    - CVE-2014-4617

Author: Marc Deslauriers
Author Date: 2014-06-26 13:21:08 UTC

Import patches-unapplied version 2.0.14-1ubuntu1.7 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 066ed79ff8124898e476643582f1366d91de983d

New changelog entries:
  * SECURITY UPDATE: denial of service via uncompressing garbled packets
    - debian/patches/CVE-2014-4617.patch: limit number of extra bytes in
      g10/compress.c.
    - CVE-2014-4617

Author: Dimitri John Ledkov
Author Date: 2014-02-19 15:08:39 UTC

Import patches-unapplied version 2.0.22-3ubuntu1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 8cc97ca251176fc48661d69ded61eb6932970165

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
    invocations of sh /bin/bash leading to syntax errors from sh. Fixes
    FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.

Author: Dimitri John Ledkov
Author Date: 2014-02-19 15:08:39 UTC

Import patches-unapplied version 2.0.22-3ubuntu1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 8cc97ca251176fc48661d69ded61eb6932970165

New changelog entries:
  * Merge from Debian, remaining changes:
    - Drop sh prefix from openpgp test environment as it leads to exec
    invocations of sh /bin/bash leading to syntax errors from sh. Fixes
    FTBFS detected in Ubuntu saucy archive rebuild.
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.

Author: Eric Dorland
Author Date: 2013-10-08 22:27:16 UTC

Import patches-unapplied version 2.0.14-2+squeeze2 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 917581e87436db632f6af23ee1291ee0fee45221

New changelog entries:
  * debian/patches/{05-cve-2013-4402_p1.diff,06-cve-2013-4402_p2.diff}:
    Fix for CVE-2013-4402, "infinite recursion in the compressed packet
    parser". (Closes: #725433)
  * debian/patches/07-cve-2013-4351.diff: Fix for CVE-2013-4351, "treats
    no-usage-permitted keys as all-usages-permitted". (Closes: #722724)

Author: Marc Deslauriers
Author Date: 2013-10-07 19:50:38 UTC

Import patches-unapplied version 2.0.17-2ubuntu3.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 8e9380ee9a65a0bdd0b968d53ecb0db810f5649c

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:50:38 UTC

Import patches-unapplied version 2.0.17-2ubuntu3.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 8e9380ee9a65a0bdd0b968d53ecb0db810f5649c

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:44:52 UTC

Import patches-unapplied version 2.0.19-2ubuntu1.1 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f19846853b282fcaf2547fc63bab8b78e6c69acb

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:44:52 UTC

Import patches-unapplied version 2.0.19-2ubuntu1.1 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f19846853b282fcaf2547fc63bab8b78e6c69acb

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:44:52 UTC

Import patches-unapplied version 2.0.19-2ubuntu1.1 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f19846853b282fcaf2547fc63bab8b78e6c69acb

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:50:38 UTC

Import patches-unapplied version 2.0.17-2ubuntu3.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 8e9380ee9a65a0bdd0b968d53ecb0db810f5649c

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:38:03 UTC

Import patches-unapplied version 2.0.20-1ubuntu3 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: aa0d1375992e7d175c7eea21b6970f74a09c1537

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-10-07 19:38:03 UTC

Import patches-unapplied version 2.0.20-1ubuntu3 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: aa0d1375992e7d175c7eea21b6970f74a09c1537

New changelog entries:
  * SECURITY UPDATE: incorrect no-usage-permitted flag handling
    - debian/patches/CVE-2013-4351.patch: correctly handle empty key flags
      in g10/getkey.c, g10/keygen.c, include/cipher.h.
    - CVE-2013-4351
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2013-4402.patch: set limits on number of filters
      and nested packets in common/iobuf.c, g10/mainproc.c.
    - CVE-2013-4402

Author: Marc Deslauriers
Author Date: 2013-01-10 14:02:23 UTC

Import patches-unapplied version 2.0.19-2ubuntu1 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 515e03b7e57cc652746e03c59d4412831196f236

New changelog entries:
  * Resynchronize on Debian, remaining changes:
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
      . debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.

Author: Marc Deslauriers
Author Date: 2013-01-10 14:02:23 UTC

Import patches-unapplied version 2.0.19-2ubuntu1 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 515e03b7e57cc652746e03c59d4412831196f236

New changelog entries:
  * Resynchronize on Debian, remaining changes:
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
      . debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.

Author: Marc Deslauriers
Author Date: 2013-01-08 20:37:01 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.11.10.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 317c4a7eb348e75b2f45df7978ed846cf5d1c6d1

New changelog entries:
  * SECURITY UPDATE: keyring corruption via malformed key import
    - debian/patches/CVE-2012-6085.patch: validate PKTTYPE in g10/import.c.
    - CVE-2012-6085

Author: Marc Deslauriers
Author Date: 2013-01-08 20:37:01 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.11.10.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 317c4a7eb348e75b2f45df7978ed846cf5d1c6d1

New changelog entries:
  * SECURITY UPDATE: keyring corruption via malformed key import
    - debian/patches/CVE-2012-6085.patch: validate PKTTYPE in g10/import.c.
    - CVE-2012-6085

Author: Marc Deslauriers
Author Date: 2013-01-08 20:37:01 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.11.10.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 317c4a7eb348e75b2f45df7978ed846cf5d1c6d1

New changelog entries:
  * SECURITY UPDATE: keyring corruption via malformed key import
    - debian/patches/CVE-2012-6085.patch: validate PKTTYPE in g10/import.c.
    - CVE-2012-6085

Author: Marc Deslauriers
Author Date: 2012-08-14 17:31:24 UTC

Import patches-unapplied version 2.0.14-2ubuntu1.2 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: f4391def322e18bef97505a8d5c153a56534b234

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-08-14 18:32:25 UTC

Import patches-unapplied version 2.0.7-1ubuntu0.2 to ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 401392f50478f5fd4914d969717b0a365f98df40

New changelog entries:
  * keyserver/gpgkeys_hkp.c: Use the longest key ID available when
    requesting a key from a key server.
    - http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=3005b0a6f43e53bed2f9b6fba7ad1205bdb29bc5

Author: Marc Deslauriers
Author Date: 2012-08-14 18:32:25 UTC

Import patches-unapplied version 2.0.7-1ubuntu0.2 to ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 401392f50478f5fd4914d969717b0a365f98df40

New changelog entries:
  * keyserver/gpgkeys_hkp.c: Use the longest key ID available when
    requesting a key from a key server.
    - http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=3005b0a6f43e53bed2f9b6fba7ad1205bdb29bc5

Author: Marc Deslauriers
Author Date: 2012-08-14 18:32:25 UTC

Import patches-unapplied version 2.0.7-1ubuntu0.2 to ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 401392f50478f5fd4914d969717b0a365f98df40

New changelog entries:
  * keyserver/gpgkeys_hkp.c: Use the longest key ID available when
    requesting a key from a key server.
    - http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=3005b0a6f43e53bed2f9b6fba7ad1205bdb29bc5

Author: Marc Deslauriers
Author Date: 2012-08-14 18:32:25 UTC

Import patches-unapplied version 2.0.7-1ubuntu0.2 to ubuntu/hardy-proposed

Imported using git-ubuntu import.

Changelog parent: 401392f50478f5fd4914d969717b0a365f98df40

New changelog entries:
  * keyserver/gpgkeys_hkp.c: Use the longest key ID available when
    requesting a key from a key server.
    - http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=3005b0a6f43e53bed2f9b6fba7ad1205bdb29bc5

Author: Marc Deslauriers
Author Date: 2012-08-14 17:34:54 UTC

Import patches-unapplied version 2.0.14-1ubuntu1.4 to ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: f0e4840d83a92fc19456735a8b09e178ab4265d9

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-08-14 17:31:24 UTC

Import patches-unapplied version 2.0.14-2ubuntu1.2 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: f4391def322e18bef97505a8d5c153a56534b234

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-08-14 17:31:24 UTC

Import patches-unapplied version 2.0.14-2ubuntu1.2 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: f4391def322e18bef97505a8d5c153a56534b234

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-08-14 17:31:24 UTC

Import patches-unapplied version 2.0.14-2ubuntu1.2 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: f4391def322e18bef97505a8d5c153a56534b234

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-08-14 17:26:31 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.11.10.1 to ubuntu/oneiric-proposed

Imported using git-ubuntu import.

Changelog parent: 94702b16125ba0e1047b5d07aecbd506e7277ffc

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-08-14 17:12:12 UTC

Import patches-unapplied version 2.0.17-2ubuntu2.12.04.1 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 94702b16125ba0e1047b5d07aecbd506e7277ffc

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.

Author: Marc Deslauriers
Author Date: 2012-07-24 14:40:49 UTC

Import patches-unapplied version 2.0.17-2ubuntu3 to ubuntu/quantal-proposed

Imported using git-ubuntu import.

Changelog parent: 94702b16125ba0e1047b5d07aecbd506e7277ffc

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.
  * debian/rules: don't generate config.guess, config.sub and version in
    clean target to prevent build cruft patches.
  * debian/patches/debian-changes-2.0.17-2,
    debian/patches/debian-changes-2.0.17-2ubuntu1: removed, build cruft.

Author: Marc Deslauriers
Author Date: 2012-07-24 14:40:49 UTC

Import patches-unapplied version 2.0.17-2ubuntu3 to ubuntu/quantal-proposed

Imported using git-ubuntu import.

Changelog parent: 94702b16125ba0e1047b5d07aecbd506e7277ffc

New changelog entries:
  * debian/patches/long-keyids.diff: Use the longest key ID available
    when requesting a key from a key server.
  * debian/rules: don't generate config.guess, config.sub and version in
    clean target to prevent build cruft patches.
  * debian/patches/debian-changes-2.0.17-2,
    debian/patches/debian-changes-2.0.17-2ubuntu1: removed, build cruft.

Author: Anders Kaseorg
Author Date: 2011-07-23 19:50:51 UTC

Import patches-unapplied version 2.0.17-2ubuntu2 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 44cd14011ab9dc2f65a979dfdc37d92caa9df675

New changelog entries:
  * debian/patches/gnupg2-fix-libgcrypt.diff: Fix assertion failure with
    libgcrypt 1.5.0. (LP: #815190)

Author: Anders Kaseorg
Author Date: 2011-07-23 19:50:51 UTC

Import patches-unapplied version 2.0.17-2ubuntu2 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 44cd14011ab9dc2f65a979dfdc37d92caa9df675

New changelog entries:
  * debian/patches/gnupg2-fix-libgcrypt.diff: Fix assertion failure with
    libgcrypt 1.5.0. (LP: #815190)

Author: Marc Deslauriers
Author Date: 2010-11-16 16:30:31 UTC

Import patches-unapplied version 2.0.14-2ubuntu1 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 5365dba6ef4c102a3e1e15ec54e3e5591ef64879

New changelog entries:
  * Merge from debian unstable. Remaining changes:
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
      . debian/gnupg2.dev: udev rules to set ACLs on SCM smartcard readers.
      . debian/rules: Call dh_installudev.
    - debian/control: Rename Vcs-* to XS-Debian-Vcs-*.
  * debian/patches/CVE-2010-2547.patch: dropped, now in
    03-gpgsm-realloc.diff.

Author: Florian Weimer
Author Date: 2010-07-23 19:22:34 UTC

Import patches-unapplied version 2.0.9-3.1+lenny1 to debian/lenny

Imported using git-ubuntu import.

Changelog parent: 7e1acdf94ebc3a4ba1b4c163f746a86583cf2857

New changelog entries:
  * Apply patch from Werner Koch to fix a use-after-free issue in
    certificate parsing.

Author: Marc Deslauriers
Author Date: 2010-08-11 17:56:02 UTC

Import patches-unapplied version 2.0.14-1.1ubuntu2 to ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: 2e33e636aecd7868122240a6b496e7ec2d13ea47

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - debian/patches/CVE-2010-2547.patch: fix use-after-free in
      kbx/keybox-blob.c.
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-11 17:56:02 UTC

Import patches-unapplied version 2.0.14-1.1ubuntu2 to ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: 2e33e636aecd7868122240a6b496e7ec2d13ea47

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - debian/patches/CVE-2010-2547.patch: fix use-after-free in
      kbx/keybox-blob.c.
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-10 13:30:23 UTC

Import patches-unapplied version 2.0.12-0ubuntu2.1 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 5f4d8f9d1eb99a3a7ba64944f7c5aa25430d43a2

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - debian/patches/CVE-2010-2547.patch: fix use-after-free in
      kbx/keybox-blob.c.
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-10 13:32:22 UTC

Import patches-unapplied version 2.0.9-3.1ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 7e1acdf94ebc3a4ba1b4c163f746a86583cf2857

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - kbx/keybox-blob.c: fix use-after-free.
    - http://cvs.gnupg.org/cgi-bin/viewcvs.cgi?view=rev&revision=5371
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-10 13:30:23 UTC

Import patches-unapplied version 2.0.12-0ubuntu2.1 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 5f4d8f9d1eb99a3a7ba64944f7c5aa25430d43a2

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - debian/patches/CVE-2010-2547.patch: fix use-after-free in
      kbx/keybox-blob.c.
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-10 13:32:22 UTC

Import patches-unapplied version 2.0.9-3.1ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 7e1acdf94ebc3a4ba1b4c163f746a86583cf2857

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - kbx/keybox-blob.c: fix use-after-free.
    - http://cvs.gnupg.org/cgi-bin/viewcvs.cgi?view=rev&revision=5371
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-10 13:32:22 UTC

Import patches-unapplied version 2.0.9-3.1ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 7e1acdf94ebc3a4ba1b4c163f746a86583cf2857

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - kbx/keybox-blob.c: fix use-after-free.
    - http://cvs.gnupg.org/cgi-bin/viewcvs.cgi?view=rev&revision=5371
    - CVE-2010-2547

Author: Marc Deslauriers
Author Date: 2010-08-10 13:30:23 UTC

Import patches-unapplied version 2.0.12-0ubuntu2.1 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 5f4d8f9d1eb99a3a7ba64944f7c5aa25430d43a2

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via certificate with large number of Subject Alternate Names
    - debian/patches/CVE-2010-2547.patch: fix use-after-free in
      kbx/keybox-blob.c.
    - CVE-2010-2547

Author: Michael Bienia
Author Date: 2010-01-22 20:49:55 UTC

Import patches-unapplied version 2.0.14-1ubuntu1 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 6cc989503138b7ad2817049c442a2bb544cf3666

New changelog entries:
  * Merge with Debian testing (lp: #511356). Remaining changes:
    - debian/gnupg2.dev: udev rules to set ACLs on SCM smartcard readers.
    - debian/rules: Call dh_installudev.