« back to all changes in this revision
Viewing changes to g10/keyring.c
- Committer: Package Import Robot
- Date: 2015-03-27 08:20:03 UTC
- Revision ID: package-import@ubuntu.com-20150327082003-doob38ydqdxubnf1
* Screen responses from keyservers (LP: #1409117)
- d/p/0001-Screen-keyserver-responses.patch
- d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
- d/p/0003-Add-kbnode_t-for-easier-backporting.patch
- d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
* Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
- d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
- debian/rules: build with --enable-large-secmem
* SECURITY UPDATE: invalid memory read via invalid keyring
- debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
a keyring in g10/keyring.c.
- CVE-2015-1606
* SECURITY UPDATE: memcpy with overlapping ranges
- debian/patches/CVE-2015-1607.patch: use inline functions to convert
buffer data to scalars in common/iobuf.c, g10/build-packet.c,
g10/getkey.c, g10/keygen.c, g10/keyid.c, g10/main.h, g10/misc.c,
g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
- CVE-2015-1607
- d/p/0001-Screen-keyserver-responses.patch
- d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
- d/p/0003-Add-kbnode_t-for-easier-backporting.patch
- d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
* Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
- d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
- debian/rules: build with --enable-large-secmem
* SECURITY UPDATE: invalid memory read via invalid keyring
- debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
a keyring in g10/keyring.c.
- CVE-2015-1606
* SECURITY UPDATE: memcpy with overlapping ranges
- debian/patches/CVE-2015-1607.patch: use inline functions to convert
buffer data to scalars in common/iobuf.c, g10/build-packet.c,
g10/getkey.c, g10/keygen.c, g10/keyid.c, g10/main.h, g10/misc.c,
g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
- CVE-2015-1607
- files added:
- .pc/0001-Screen-keyserver-responses.patch
- .pc/0001-Screen-keyserver-responses.patch/g10
- .pc/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
- .pc/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch/g10
- .pc/0003-Add-kbnode_t-for-easier-backporting.patch
- .pc/0003-Add-kbnode_t-for-easier-backporting.patch/g10
- .pc/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
- .pc/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch/g10
- .pc/Add-build-and-runtime-support-for-larger-RSA-key.patch
- .pc/Add-build-and-runtime-support-for-larger-RSA-key.patch/doc
- .pc/Add-build-and-runtime-support-for-larger-RSA-key.patch/g10
- .pc/CVE-2015-1606.patch
- .pc/CVE-2015-1606.patch/g10
- .pc/CVE-2015-1607.patch
- .pc/CVE-2015-1607.patch/common
- .pc/CVE-2015-1607.patch/g10
- .pc/CVE-2015-1607.patch/include
- .pc/CVE-2015-1607.patch/kbx
- .pc/CVE-2015-1607.patch/scd
- .pc/CVE-2015-1607.patch/tools
- files modified:
- .pc/applied-patches
added
removed
g10/keyring.c
