Comment 9 for bug 1214844

Florian Weimer of the Debian security team writes:
> I think the proper fix would be to encode the password in UTF-8 for
> new encryptions, and try both the old cp1252 method and the new one on
> decryption.
>
> I would add this information to the Launchpad bug, but for some
> reason, I get error message.
>
> In any case, until upstream has implemented something in this
> direction, I don't think it's worth pushing a security update.