gnupg 1.4.16-1.2ubuntu1 source package in Ubuntu RTM

Changelog

gnupg (1.4.16-1.2ubuntu1) utopic; urgency=medium

  * Resynchronise with Debian. Remaining changes:
    - Disable mlock() test since it fails with ulimit 0 (on buildds).
    - Set gpg (or gpg2) and gpgsm to use a passphrase agent by default.
    - Only suggest gnupg-curl and libldap; recommendations are pulled into
      minimal, and we don't need the keyserver utilities in a minimal Ubuntu
      system.
    - Remove the Win32 build.
    - Build using dh-autoreconf
    - Disable inline assembler for ppc64el.

gnupg (1.4.16-1.2) unstable; urgency=high

  * Non-maintainer upload with maintainers approval.
  * CVE-2014-4617: Avoid DoS due to garbled compressed data packets.
    Apply upstream commit to stop a possible DoS using garbled compressed
    data packets which can be used to put gpg into an infinite loop.
    (Closes: #752497)

gnupg (1.4.16-1.1) unstable; urgency=low

  * Non-Maintainer Upload.
  * Initialize trustdb before clearing it (Closes: #735363)
 -- Marc Deslauriers <email address hidden>   Thu, 26 Jun 2014 14:41:40 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Utopic
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
utils
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
14.09-factory release main utils
14.09 release main utils

Downloads

File Size SHA-256 Checksum
gnupg_1.4.16.orig.tar.gz 4.8 MiB f3af2f9c34c305869ad38b4ee7ab9e1487f50884ee8d9d42cccb31e1ced5cdef
gnupg_1.4.16-1.2ubuntu1.debian.tar.xz 29.9 KiB 374791f4056f928305317c301b87ba46f65706bfddea571318ac385537161135
gnupg_1.4.16-1.2ubuntu1.dsc 2.3 KiB 603e36b17a6e64d9f01d724c591d97976e45b5f97789d04d255d5b703411192b

View changes file

Binary packages built by this source

gnupg: GNU privacy guard - a free PGP replacement

 GnuPG is GNU's tool for secure communication and data storage.
 It can be used to encrypt data and to create digital signatures.
 It includes an advanced key management facility and is compliant
 with the proposed OpenPGP Internet standard as described in RFC 4880.
 .
 GnuPG 1.4 is the standalone, non-modularized series. In contrast to
 the version 2 series, shipped with the gnupg2 package, it comes
 with no support for S/MIME and some other tools useful for desktop
 environments, but also with less dependencies.
 .
 The gnupg package is built without libcurl. So it does not support
 HKPS keyservers. Install the gnupg-curl package if you want to use
 the keyserver helper tools built with libcurl and supporting HKPS.

gnupg-curl: GNU privacy guard - a free PGP replacement (cURL)

 GnuPG is GNU's tool for secure communication and data storage.
 It can be used to encrypt data and to create digital signatures.
 It includes an advanced key management facility and is compliant
 with the proposed OpenPGP Internet standard as described in RFC 4880.
 .
 This package contains the keyserver helper tools built with libcurl,
 which replace the ones in the gnupg package built with the "curl shim"
 variant of gnupg. This package provides support for HKPS keyservers.

gnupg-udeb: GNU privacy guard - a free PGP replacement

 GnuPG is GNU's tool for secure communication and data storage.
 It can be used to encrypt data and to create digital signatures.
 It includes an advanced key management facility and is compliant
 with the proposed OpenPGP Internet standard as described in RFC 4880.
 .
 This is GnuPG packaged in minimal form for use in debian-installer.

gpgv: GNU privacy guard - signature verification tool

 GnuPG is GNU's tool for secure communication and data storage.
 .
 gpgv is a stripped-down version of gnupg which is only able to check
 signatures. It is smaller than the full-blown gnupg and uses a
 different (and simpler) way to check that the public keys used to
 make the signature are trustworthy.

gpgv-udeb: minimal signature verification tool

 GnuPG is GNU's tool for secure communication and data storage.
 It can be used to encrypt data and to create digital signatures.
 It includes an advanced key management facility and is compliant
 with the proposed OpenPGP Internet standard as described in RFC 4880.
 .
 This is GnuPG's signature verification tool, gpgv, packaged in minimal
 form for use in debian-installer.