27ec317f46
- Update to 2.5.14 (bsc#1255715, CVE-2025-68973, bsc#1255714, CVE-2025-68973): - note updated 2.5.x build dependencies removes the -unknown suffix after the version number. * Up to five times faster verification of detached signatures, * Added and improved options for crypto options, and all-around * dirmngr: With new LDAP keyservers store the new attributes. - GnuPG 2.2.23: - Code no longer uses libcurl, remove from buildrequires. * wks: Add option --with-colons to the client. - Dropped gnupg-CVE-2018-9234.patch since it is included upstream (bnc#1088255 CVE-2018-9234) * modified gnupg-2.0.18-files-are-digests.patch to work with Existing configurations are not touched. drop gnupg-2.1.19-stronger-defaults.patch FATE#323084 * Many minor bug fixes and code cleanup. - Test suite hangs in qemu-arm, workaround. - link with -pie - add gnupg-dont-fail-with-seahorse-agent.patch (bnc#589994) - update to gnupg-2.0.15 - fix build for older distributions - port files-are-digests patch from gpg1 (bnc#469229) - change BuildRequires: (pth-devel -> libpth-devel) - BuildRequires: pth-devel - gnupg-2.0.10-fix-missing-option.patch (bnc#477362) - add gnupg-2.0.10-fix-convert.patch lookup. * require libadns * removing gnupg-2.0.8-warningfixes.diff - add selected upstream fixes and fix gcc and rpmlint warnings
Dirk Mueller2025-12-31 09:26:31 +00:00
cb1e07487f
Accepting request 1324758 from security:privacy
Dirk Mueller2025-12-30 21:07:45 +00:00
9982b2d485
Accepting request 1319687 from Base:System
Ana Guerrero2025-11-25 14:51:53 +00:00
fe42920a34
Accepting request 1319683 from home:pmonrealgonzalez:branches:Base:System
Angel Yankov2025-11-24 09:39:34 +00:00
cf3708e880
Accepting request 1313211 from Base:System
Ana Guerrero2025-10-24 15:23:04 +00:00
6382060a3a
Accepting request 1313161 from home:pmonrealgonzalez:branches:Base:System
Pedro Monreal Gonzalez2025-10-23 12:15:39 +00:00
dfa86ecd5e
Accepting request 1308161 from Base:System
Ana Guerrero2025-10-01 16:55:43 +00:00
e4c730b5f8
Accepting request 1308159 from home:pmonrealgonzalez:branches:Base:System
Pedro Monreal Gonzalez2025-09-30 11:01:28 +00:00
e68a7fc7bd
Accepting request 1303157 from Base:System
Ana Guerrero2025-09-10 15:29:33 +00:00
ff6b59b967
- Update to 2.5.7: * gpg: Allow updating a SHA-1 key certification w/o using the --force-sign-key option. [T7663] * gpg: The group key flag has now been fully implemented. [rG8833a34bf0] * gpg: Make combination of show-only-fpr-mbox and show-unusable-uid work. [rGd5a4a2dc89] * gpg: Do not allow compressed key packets on import. [T7014] * gpgsm: Allow an empty subject DN also during import. [T7171] * agent: Recover the old behavior with max-cache-ttl=0. [T6681] * agent: Fix ECC key on smartcard for composite KEM with PQC. [T7648] * scd: Fix a harmless read buffer over-read in a function used by PKCS#15 cards. [T7662] * gpg-mail-tube,wks: Support templates for mail content. [T7381] * Use the KEM interface of Libgcrypt for encryption/decryption. [T7649] - Remove patches: * gnupg-agent-Recover-the-old-behavior-with-max-cache-ttl-0.patch * gnupg-dirmngr-Don-t-install-expired-sks-certificate.patch - Update gpg2.keyring
Pedro Monreal Gonzalez2025-06-03 12:06:53 +00:00
d305f4c236
Accepting request 1277576 from Base:System
Ana Guerrero2025-05-23 12:29:17 +00:00
cc979e7f46
Accepting request 1277576 from Base:System
Ana Guerrero2025-05-23 12:29:17 +00:00
1df721705b
- Update to 2.5.6: * gpg: Add a flag to the filter expressions for left anchored substring match. [rGc12b7d047e] * gpg: New list option "show-trustsig" to avoid resorting to colon mode for this info. [rG41d6ae8f41] * gpg: New command --quick-tsign-key to create a trust signature. [rGd90b290f97] * gpg: New keygen parameter "User-Id". [rGcfd597c603] * gpg: New list options "show-trustsig". [rGrG41d6ae8f41] * gpg: Fix double free of internal data in no-sig-cache mode [T7547] * gpg: Signatures from revoked or expired keys do not anymore show up as missing keys. Fixes regression in 2.5.5. [T7583] * gpgsm: Extend --learn-card by an optional s/n argument. [T7379] * gpgsm: Skip expired certificates when selection a certificate by subject. [rG4cf83273e8] * card: New command "ll" as alias for "list --cards". [rGd6ee7adebe] * scd:p15: Accept P15 cards with a zero-length label. [rGdb25aa9887] * keyboxd: Use case-insensitive search for mail addresses. [T7576] * dirmngr: Fix a problem in libdns related to an address change from 127.0.0.1. [T4021] * gpgconf: Fix reload and kill of keyboxd. [T7569] * Fix logic for certain recsel conditions. [rG8968e84903] * Add Solaris support to get_signal_name. [T7638] * Fix build error of the test shell on AIX. [T7632] - Release-info: https://dev.gnupg.org/T7586 - Rebase patch gnupg-nobetasuffix.patch - Remove patch gnupg-CVE-2025-30258-fix.patch
Pedro Monreal Gonzalez2025-05-08 19:18:57 +00:00
7ce93e6679
Accepting request 1255641 from home:pmonrealgonzalez:branches:Base:System
Pedro Monreal Gonzalez2025-03-24 14:02:22 +00:00
23376f49fa
Accepting request 1255641 from home:pmonrealgonzalez:branches:Base:System
Pedro Monreal Gonzalez2025-03-24 14:02:22 +00:00
735c4809e3
Accepting request 1251267 from Base:System
Ana Guerrero2025-03-10 16:57:32 +00:00
92a7acf48d
Accepting request 1251267 from Base:System
Ana Guerrero2025-03-10 16:57:32 +00:00
ff3895645a
- Update to 2.5.5: [bsc#1236931, bsc#1239119] * gpg: Fix a verification DoS due to a malicious subkey in the keyring. [T7527] * dirmngr: Fix possible hangs due to blocking connection requests. [T6606, T7434] Release-info: https://dev.gnupg.org/T7530Pedro Monreal Gonzalez2025-03-07 19:23:04 +00:00
3d82e3acf3
- Fixing gpg-agent integration by changing --supervised to --deprecated-supervised in service files.
Pedro Monreal Gonzalez2025-02-26 14:31:40 +00:00
0a8e33b0f5
Accepting request 1247136 from Base:System
Ana Guerrero2025-02-20 15:27:36 +00:00
6a3d8af788
Accepting request 1247136 from Base:System
Ana Guerrero2025-02-20 15:27:36 +00:00
fde95a242f
Accepting request 1247032 from home:pmonrealgonzalez:branches:Base:System
Lucas Mulling2025-02-19 15:02:23 +00:00
b5c8bbca87
- Update to 2.5.4: * gpg: New option --disable-pqc-encryption. [rG00c31f8b04] * gpg: Fix --quick-add-key for Weierstrass ECC with usage given. [T7506] * gpg: Fix handling with no CRC armor. [T7071] * gpg: New private Kyber keys are now cross-referenced using a new Link attribute. [T6638] * gpg: Fix an import problem with keys having another primary key as a subkey. [T7527] * gpgsm: Allow unattended PKCS#12 export without passphrase. [rG159e801043] * gpgsm: Allow CSR generation with an unprotected key. [rG89055f24f4] * agent: New option --change-std-env-name. [T7522] * agent: Fix ssh-agent's request_identities for skipped Brainpool keys. [rG2469dc5aae] * Do not package zlib and bzip2 object files in a speedo release build. [T7442] * Rebase patches: - gnupg-add_legacy_FIPS_mode_option.patch - gnupg-allow-import-of-previously-known-keys-even-without-UIDs.patch - gnupg-revert-rfc4880bis.patch
Lucas Mulling2025-02-19 15:02:23 +00:00
3cb81bcb5e
Accepting request 1237873 from Base:System
Ana Guerrero2025-01-16 17:30:58 +00:00
149f801869
Accepting request 1237873 from Base:System
Ana Guerrero2025-01-16 17:30:58 +00:00
304a894420
- Update to 2.5.3 * gpg: Allow for signature subpackets of up to 30000 octets. [rG36dbca3e69] * gpg: Silence expired trusted-key diagnostics in quiet mode. [T7351] * gpg: Allow smaller session keys with Kyber and enforce the use of AES-256 if useful. [T7472] * gpg: Fix regression in key generation from existing card key. [T7309,T7457] * gpg: Print a warning if the card backup key could not be written. [T2169] * The --supervised options of gpg-agent and dirmngr have been renamed to --deprecated-supervised as preparation for their removal. [rGa019a0fcd8] * There is no more default for a keyserver.
Pedro Monreal Gonzalez2025-01-14 16:14:12 +00:00
7f62e3aabc
Accepting request 1235795 from Base:System
Ana Guerrero2025-01-09 14:05:23 +00:00
63e215bf35
Accepting request 1235795 from Base:System
Ana Guerrero2025-01-09 14:05:23 +00:00
7e0e52a3f2
Accepting request 1235549 from home:AndreasStieger:branches:Base:System
Pedro Monreal Gonzalez2025-01-08 07:02:53 +00:00
767f3b2a44
Accepting request 1217152 from Base:System
Ana Guerrero2024-10-25 17:18:26 +00:00
ac9f481e74
Accepting request 1217152 from Base:System
Ana Guerrero2024-10-25 17:18:26 +00:00
f9a81218b1
Accepting request 1216989 from home:pmonrealgonzalez:branches:Base:System
Pedro Monreal Gonzalez2024-10-23 06:41:50 +00:00
c957356fce
- Update to 2.5.1: * gpg: The support for composite Kyber+ECC public key algorithms does now use the final FIPS-203 and LibrePGP specifications. The experimental keys from 2.5.0 are no longer supported. [T6815] * gpg: New commands --add-recipients and --change-recipients. [T1825] * gpg: New option --proc-all-sigs. [T7261] * gpg: Fix a regression in 2.5.0 in gpgme's tests. [T7195] * gpg: Make --no-literal work again for -c and --store. [T5852] * gpg: Improve detection of input data read errors. [T6528] * gpg: Fix getting key by IPGP record (rfc-4398). [T7288] * gpgsm: New option --assert-signer. [T7286] * gpgsm: More improvements to PKCS#12 parsing to cope with latest IVBB changes. [T7213] * agent: Fix KEYTOCARD command when used with a loopback pinentry. [T7283] * gpg-mail-tube: Make sure GNUPGHOME is set in vsd mode. New option --as-attach. [rG4511997e9e1b] * Now uses the process spawn API from libgpg-error. [T7192,T7194] * Removed the --enable-gpg-is-gpg2 configure time option. [rG2125f228d36c] * Rebase patches: - gnupg-add_legacy_FIPS_mode_option.patch - gnupg-revert-rfc4880bis.patch - gnupg-nobetasuffix.patch
Pedro Monreal Gonzalez2024-10-23 06:41:50 +00:00