ubuntu/+source/gnupg2:ubuntu/bionic-updates

Last commit made on 2019-01-10
Get this branch:
git clone -b ubuntu/bionic-updates https://git.launchpad.net/ubuntu/+source/gnupg2
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/bionic-updates
Repository:
lp:ubuntu/+source/gnupg2

Recent commits

77e10e0... by Marc Deslauriers on 2019-01-10

Import patches-unapplied version 2.2.4-1ubuntu1.2 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 070f3274d198c4c592f8be9673ae6cbdc07ae89d

New changelog entries:
  * SECURITY UPDATE: CSRF in dirmngr
    - debian/patches/CVE-2018-1000858.patch: don't follow a redirect in
      dirmngr/Makefile.am, dirmngr/http.c, dirmngr/http.h,
      dirmngr/ks-engine-hkp.c, dirmngr/ks-engine-http.c,
      dirmngr/t-http-basic.c, dirmngr/t-http.c.
    - CVE-2018-1000858

070f327... by Steve Beattie on 2018-06-11

Import patches-unapplied version 2.2.4-1ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: bc713ad3510b6ffe547f9ae53b5b08c6c6697fae

New changelog entries:
  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/from-master/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * SECURITY UPDATE: certify public keys without a certify key present
    when using a smartcard.
    - debian/patches/from-master/CVE-2018-9234-1.patch,
    - debian/patches/from-master/CVE-2018-9234-2.patch: Check that a key
      may do certifications.
    - CVE-2018-9234
  * Always use MDC encryption mode regardless of the cipher algorithm
    or any preferences. The --rfc2440 option can be used to create
    a message without an MDC.
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
  * Decryption of messages not using the MDC mode into a hard
    failure even if a legacy cipher algorithm was used. The
    option --ignore-mdc-error can be used to turn this failure
    into a warning.
    - debian/patches/from-master/0001-gpg-Turn-no-mdc-warn-into-a-NOP.patch
    - debian/patches/from-master/0003-gpg-Remove-MDC-options.patch
    - debian/patches/from-master/0004-gpg-Print-a-hint-on-how-to-decrypt-a-non-mdc-message.patch

bc713ad... by Dimitri John Ledkov on 2018-01-11

Import patches-unapplied version 2.2.4-1ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 92439f5f808cfe72f7f1e0628c93cb6903101fd7

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - debian/gnupg2.udev:
      - Add udev rules to give gpg access to some smartcard readers;
        Debian #543217.
      - udev rules to set ACLs on SCM smartcard readers.
    - Add breaks for software-properties-common at 0.96.24.3 or lower.
    - Honor http_proxy= environment variables by default in the systemd
      user session dirmngr service. LP: #1625848
    - Export GPG_AGENT_INFO in the systemd-environment-generator too.
  * Dropped changes:
    - Removed user session upstart support.
    - Removed gpg-agent.service changes, use Debian's environment generator instead.
    - Patch to set GNUPGHOME for tests, fixed in debian/upstream.

92439f5... by dkg on 2018-01-03

Import patches-unapplied version 2.2.4-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e658f64584239ffe89ed3ab938c0f4e0e0ce32bb

New changelog entries:
  * New upstream release
  * do not use uupdate (we use gbp-import-orig)
  * dirmngr: cannot avoid idling in current arrangement
  * adjusting fixes to gpgsm defaults
  * prefer SHA-512 specifically on personal-digest-preferences.
  * refresh patches
  * Standards-Version: bump to 4.1.3 (no changes needed)
  * drop unnecessary lintian override
  * reflect actual requirement for libassuan
  * import bugfixes from upstream

e658f64... by dkg on 2017-12-01

Import patches-unapplied version 2.2.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e7f95bb5716012581a14d6a7778f6adc65810251

New changelog entries:
  * New upstream release
  * refreshed patches

e7f95bb... by dkg on 2017-11-08

Import patches-unapplied version 2.2.2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3ed7ddef8db3d0367421f9fb86ac4ce96bd9cedd

New changelog entries:
  * new upstream release.
  * avoid testsuite delays from excess socket waiting
  * clean up trailing whitespace in debian/{rules,changelog}
  * drop patches already upstream
  * refresh remaining patches

3ed7dde... by dkg on 2017-10-27

Import patches-unapplied version 2.2.1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 56226822de36640186795718a28edaa2fd648f5b

New changelog entries:
  * block ptrace on scdaemon as well as gpg-agent (Closes: #878952)

5622682... by dkg on 2017-10-19

Import patches-unapplied version 2.2.1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b7cf965faecfd1a221bcc81ae70667c4e06004a9

New changelog entries:
  * restore lintian override, because ftp-master isn't yet running lintian
    2.5.55 (see #877999 for more details)
  * bugfix for multiple keyrings (Closes: #878812)
  * drop an unnecessary lintian override

b7cf965... by dkg on 2017-10-10

Import patches-unapplied version 2.2.1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 105b3e868e5da7ee3a26ccb05e9ebc4c7348f4d0

New changelog entries:
  * adopt bugfixes and documentation improvements from upstream
  * reorganize debian/patches for simpler maintenance
  * move gnupg-l10n to Section: localization
  * Standards-Version: bump to 4.1.1 (no changes needed)

105b3e8... by dkg on 2017-09-19

Import patches-unapplied version 2.2.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 93bb1c5ae9a5a60176334bbe5ecd31b870c308ed

New changelog entries:
  * New upstream release
  * drop patches already applied upstream