Hello community, here is the log from the commit of package gpg2 checked in at Sun Apr 6 05:55:30 CEST 2008. -------- --- gpg2/gpg2.changes 2008-03-26 22:07:34.000000000 +0100 +++ gpg2/gpg2.changes 2008-03-28 17:01:10.000000000 +0100 @@ -1,0 +2,13 @@ +Fri Mar 28 16:14:33 CET 2008 - pcerny@suse.cz + +- update to 2.0.9 + * fixes CVE-2008-1530 (bnc#374254) + * removing gnupg-2.0.8-from-upstream.diff (included in release) + * removing gnupg-2.0.4-oldkey.diff (accepted by upstream) + * removing gnupg-2.0.8-warningfixes.diff + (also appears in upstream) +- patch gnupg-2.0.9-RSA_ES.patch + * adding back support for deprecated RSA_E, RSA_S algorithms + (bnc#342979) + +------------------------------------------------------------------- Old: ---- gnupg-2.0.4-oldkey.diff gnupg-2.0.8-from-upstream.diff gnupg-2.0.8.tar.bz2 gnupg-2.0.8-warningfixes.diff New: ---- gnupg-2.0.9-RSA_ES.patch gnupg-2.0.9.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gpg2.spec ++++++ --- /var/tmp/diff_new_pack.M28070/_old 2008-04-06 05:50:33.000000000 +0200 +++ /var/tmp/diff_new_pack.M28070/_new 2008-04-06 05:50:33.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package gpg2 (Version 2.0.8) +# spec file for package gpg2 (Version 2.0.9) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine @@ -12,8 +12,8 @@ Name: gpg2 -Version: 2.0.8 -Release: 29 +Version: 2.0.9 +Release: 1 #krb5 BuildRequires: expect fdupes libassuan-devel pth BuildRequires: libgcrypt-devel libksba-devel opensc-devel @@ -26,17 +26,15 @@ PreReq: %install_info_prereq AutoReqProv: on Requires: pinentry dirmngr %name-lang = %{version} -Provides: newpg gpg = 1.4.8 gnupg = %{version} -Obsoletes: newpg gpg <= 1.4.8 +Provides: newpg gpg = 1.4.9 gnupg = %{version} +Obsoletes: newpg gpg <= 1.4.9 Summary: GnuPG 2 -Source: gnupg-2.0.8.tar.bz2 -Patch2: gnupg-2.0.8-from-upstream.diff -Patch3: gnupg-2.0.4-oldkey.diff -Patch4: gnupg-2.0.8-warningfixes.diff +Source: gnupg-2.0.9.tar.bz2 Patch5: gnupg-1.9.22-ccid-driver-fix.diff Patch6: gnupg-1.9.18-tmpdir.diff Patch7: gnupg-2.0.4-install_tools.diff Patch9: gnupg-2.0.4-default-tty.diff +Patch10: gnupg-2.0.9-RSA_ES.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -53,14 +51,12 @@ %lang_package %prep %setup -q -n gnupg-%version -%patch2 -p1 -%patch3 -%patch4 %patch5 %patch6 # Note: this patch only patches Makefile.am files, so it needs automake to run. %patch7 %patch9 +%patch10 -p1 %build # Required for patch7: @@ -136,6 +132,16 @@ /usr/share/gnupg %changelog +* Fri Mar 28 2008 pcerny@suse.cz +- update to 2.0.9 + * fixes CVE-2008-1530 (bnc#374254) + * removing gnupg-2.0.8-from-upstream.diff (included in release) + * removing gnupg-2.0.4-oldkey.diff (accepted by upstream) + * removing gnupg-2.0.8-warningfixes.diff + (also appears in upstream) +- patch gnupg-2.0.9-RSA_ES.patch + * adding back support for deprecated RSA_E, RSA_S algorithms + (bnc#342979) * Wed Mar 26 2008 coolo@suse.de - require the split out lang package * Sun Mar 23 2008 coolo@suse.de ++++++ gnupg-1.9.18-tmpdir.diff ++++++ --- /var/tmp/diff_new_pack.M28070/_old 2008-04-06 05:50:33.000000000 +0200 +++ /var/tmp/diff_new_pack.M28070/_new 2008-04-06 05:50:34.000000000 +0200 @@ -1,3 +1,4 @@ +# create gpg-agent socket in TMPDIR Index: agent/gpg-agent.c =================================================================== --- agent/gpg-agent.c.orig ++++++ gnupg-2.0.4-default-tty.diff ++++++ --- /var/tmp/diff_new_pack.M28070/_old 2008-04-06 05:50:34.000000000 +0200 +++ /var/tmp/diff_new_pack.M28070/_new 2008-04-06 05:50:34.000000000 +0200 @@ -1,6 +1,7 @@ +# sets default tty to /dev/tty --- common/asshelp.c +++ common/asshelp.c -@@ -90,6 +90,8 @@ +@@ -95,6 +95,8 @@ dft_ttyname = getenv ("GPG_TTY"); if ((!dft_ttyname || !*dft_ttyname) && ttyname (0)) dft_ttyname = ttyname (0); @@ -11,7 +12,7 @@ { --- common/simple-pwquery.c +++ common/simple-pwquery.c -@@ -217,6 +217,8 @@ +@@ -222,6 +222,8 @@ #ifndef HAVE_W32_SYSTEM if ((!dft_ttyname || !*dft_ttyname) && ttyname (0)) dft_ttyname = ttyname (0); ++++++ gnupg-2.0.9-RSA_ES.patch ++++++ # adds back support for deprecated RSA_E, RSA_S algorithms --- gnupg-2.0.9.orig/g10/misc.c +++ gnupg-2.0.9/g10/misc.c @@ -1285,6 +1285,8 @@ pubkey_get_npkey( int algo ) if (algo == GCRY_PK_ELG_E) algo = GCRY_PK_ELG; + if (algo == GCRY_PK_RSA_E || algo == GCRY_PK_RSA_S) + algo = GCRY_PK_RSA; if (gcry_pk_algo_info( algo, GCRYCTL_GET_ALGO_NPKEY, NULL, &n)) n = 0; return n; @@ -1298,6 +1300,8 @@ pubkey_get_nskey( int algo ) if (algo == GCRY_PK_ELG_E) algo = GCRY_PK_ELG; + if (algo == GCRY_PK_RSA_E || algo == GCRY_PK_RSA_S) + algo = GCRY_PK_RSA; if (gcry_pk_algo_info( algo, GCRYCTL_GET_ALGO_NSKEY, NULL, &n )) n = 0; return n; @@ -1311,6 +1315,8 @@ pubkey_get_nsig( int algo ) if (algo == GCRY_PK_ELG_E) algo = GCRY_PK_ELG; + if (algo == GCRY_PK_RSA_E || algo == GCRY_PK_RSA_S) + algo = GCRY_PK_RSA; if (gcry_pk_algo_info( algo, GCRYCTL_GET_ALGO_NSIGN, NULL, &n)) n = 0; return n; @@ -1324,6 +1330,8 @@ pubkey_get_nenc( int algo ) if (algo == GCRY_PK_ELG_E) algo = GCRY_PK_ELG; + if (algo == GCRY_PK_RSA_E || algo == GCRY_PK_RSA_S) + algo = GCRY_PK_RSA; if (gcry_pk_algo_info( algo, GCRYCTL_GET_ALGO_NENCR, NULL, &n )) n = 0; return n; ++++++ gnupg-2.0.8.tar.bz2 -> gnupg-2.0.9.tar.bz2 ++++++ ++++ 115727 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org