Date: Tue, 26 Nov 2019 03:21:46 +0000 (UTC) From: Adam Weinberger <adamw@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r518443 - head/security/gnupg Message-ID: <201911260321.xAQ3LklI054357@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: adamw Date: Tue Nov 26 03:21:46 2019 New Revision: 518443 URL: https://svnweb.freebsd.org/changeset/ports/518443 Log: gnupg: Update to 2.2.18 * gpg: Changed the way keys are detected on a smartcards; this allows the use of non-OpenPGP cards. In the case of a not very likely regression the new option --use-only-openpgp-card is available. [#4681] * gpg: The commands --full-gen-key and --quick-gen-key now allow direct key generation from supported cards. [#4681] * gpg: Prepare against chosen-prefix SHA-1 collisions in key signatures. This change removes all SHA-1 based key signature newer than 2019-01-19 from the web-of-trust. Note that this includes all key signature created with dsa1024 keys. The new option --allow-weak-key-signatues can be used to override the new and safer behaviour. [#4755,CVE-2019-14855] * gpg: Improve performance for import of large keyblocks. [#4592] * gpg: Implement a keybox compression run. [#4644] * gpg: Show warnings from dirmngr about redirect and certificate problems (details require --verbose as usual). * gpg: Allow to pass the empty string for the passphrase if the '--passphase=' syntax is used. [#4633] * gpg: Fix printing of the KDF object attributes. * gpg: Avoid surprises with --locate-external-key and certain --auto-key-locate settings. [#4662] * gpg: Improve selection of best matching key. [#4713] * gpg: Delete key binding signature when deletring a subkey. [#4665,#4457] * gpg: Fix a potential loss of key sigantures during import with self-sigs-only active. [#4628] * gpg: Silence "marked as ultimately trusted" diagnostics if option --quiet is used. [#4634] * gpg: Silence some diagnostics during in key listsing even with option --verbose. [#4627] * gpg, gpgsm: Change parsing of agent's pkdecrypt results. [#4652] * gpgsm: Support AES-256 keys. * gpgsm: Fix a bug in triggering a keybox compression run if --faked-system-time is used. * dirmngr: System CA certificates are no longer used for the SKS pool if GNUTLS instead of NTBTLS is used as TLS library. [#4594] * dirmngr: On Windows detect usability of IPv4 and IPv6 interfaces to avoid long timeouts. [#4165] * scd: Fix BWI value for APDU level transfers to make Gemalto Ezio Shield and Trustica Cryptoucan work. [#4654,#4566] * wkd: gpg-wks-client --install-key now installs the required policy file. Release-info: https://dev.gnupg.org/T4684 Modified: head/security/gnupg/Makefile head/security/gnupg/distinfo Modified: head/security/gnupg/Makefile ============================================================================== --- head/security/gnupg/Makefile Tue Nov 26 02:48:11 2019 (r518442) +++ head/security/gnupg/Makefile Tue Nov 26 03:21:46 2019 (r518443) @@ -1,8 +1,7 @@ # $FreeBSD$ PORTNAME= gnupg -PORTVERSION= 2.2.17 -PORTREVISION= 4 +PORTVERSION= 2.2.18 CATEGORIES= security MASTER_SITES= GNUPG Modified: head/security/gnupg/distinfo ============================================================================== --- head/security/gnupg/distinfo Tue Nov 26 02:48:11 2019 (r518442) +++ head/security/gnupg/distinfo Tue Nov 26 03:21:46 2019 (r518443) @@ -1,3 +1,3 @@ -TIMESTAMP = 1562687164 -SHA256 (gnupg-2.2.17.tar.bz2) = afa262868e39b651a2db4c071fba90415154243e83a830ca00516f9a807fd514 -SIZE (gnupg-2.2.17.tar.bz2) = 6717554 +TIMESTAMP = 1574737329 +SHA256 (gnupg-2.2.18.tar.bz2) = 30d37ce2ca55b2b9b61480b2a175a3b22066ab41cd3f84688448919b566dec0a +SIZE (gnupg-2.2.18.tar.bz2) = 6740621
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201911260321.xAQ3LklI054357>