[Pkg-gnupg-commit] [gnupg2] annotated tag debian/2.0.14-2+squeeze3 created (now 8aba4bd)

Eric Dorland eric at moszumanska.debian.org
Sun Sep 14 03:01:13 UTC 2014 

This is an automated email from the git hooks/post-receive script.

eric pushed a change to annotated tag debian/2.0.14-2+squeeze3
in repository gnupg2.

        at  8aba4bd   (tag)
   tagging  c2ca1018c8fef8a495c4ca671064ac4888659f10 (commit)
 tagged by  Eric Dorland
        on  Sat Sep 13 22:59:56 2014 -0400

- Log -----------------------------------------------------------------
debian release 2.0.14-2+squeeze3
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAABCAAGBQJUFQS7AAoJEBiP/EqTqnFyLm4P/ilxd1yCvhZcNW/jI2uBTfpE
LF6Imo7wNsqlhfwHoTSBSb4Lj+YDsTv0mppoBXkWXrW2mkAiCXAVKTAke+g6rBeA
yMF2ggKXlgGnYr1YVMQUh2wFmAePe2cSRgt0lTZ0qab/KhaCBHtEv55LdvgO6elk
QNjS+mvNXitBu/M4DBMLRvDT/aQ+iA0mUVvnzQnRKXTJAJNiMONG8wa15Hh3JkGu
85KOeALtj8se1bsMSy7dK/vidMSjjlD47KjaBgpioQZM4kaEzHK5lsTk9AddB118
NhMYyEUYiQpKz9b73Ojs9+9yExX3/43jq88jKapD+GUQS5l0ayKcPS9+Z20q7kYO
BhjCTfhib2bD9p3a55bq4W1KgKtyBZ6mW1fpsjgtkWU2+dJ26kAAApqDUl2YA4g8
kZ+OsmidszBvgaLP+9i0Ed7/WwfrUDGD4I8xVS4d/0tlR/4Og30AI9Bg4sIDZAgU
u2V5KHPKNINj+84W9FyD164q5Pgt9T8Sa7o2D5R6juIL0eaq409yr/BuynbWeT9j
zRKE8n6dQTmQ29GTSSHJYMINA3jI67C+K0/ackuWvqgsyQey/S4HVvhllEOxAV/2
Rr0NQJbxjc9PMBNnRo6K/YgzRxHRAcGX2zdE45aBZid2EZsj3t2Hdp7y7l46tQIr
1bql5gxQJNOWb/JwAuAt
=dXjK
-----END PGP SIGNATURE-----

Daniel Kahn Gillmor (1):
      Fix broken generation of rsa and dsa keys.

Eric Dorland (111):
      import gnupg2 upstream
      cp gnupg2 into trunk
      import gnupg2 1.9.20-1.1
      take over, fix for CVE-2006-3746
      make rules executable
      Load /tmp/tmp.PyQRH12913/gnupg2-1.9.22 into
      initial import of gnupg 1.9.22
      Load . into branches/gnupg2/upstream/current.
      readd debian dir
      Load . into trunk/gnupg2.
      Load /tmp/tmp.YAgPy10815/gnupg2-1.9.93 into
      gnupg2 1.9.93
      Load /tmp/tmp.OsTmjU1001/gnupg2-1.9.94 into
      gnupg2 1.9.94
      Load /tmp/tmp.QvKWH29881/gnupg2-2.0.0 into
      gnupg 2.0.0
      remove some unneeded files
      fix info, remove point-to-info.1
      finalise changelog
      dh_install instead of dh_movefiles
      rules fixup
      remove pkglibdir
      another tweak
      fix space detection
      install pcsc-wrapper in libexec
      remove silly version file
      tweak build-deps
      fix up the paths to some utility programs
      update standards-version
      remove dev warning
      fix missing replaces
      remove unnecessary dependencies
      generate gnupg2.info from gnupg.texi
      temporarily finalise
      run makeinfo manually
      finalise and add bug number
      To prepare to load /tmp/tmp.oAwozP9958/gnupg2-2.0.1 into
      Load /tmp/tmp.oAwozP9958/gnupg2-2.0.1 into
      initial import of gnupg2 2.0.1
      [svn-upgrade] Integrating new upstream version, gnupg2 (2.0.2)
      gnupg 2.0.2
      [svn-upgrade] Integrating new upstream version, gnupg2 (2.0.3)
      import gnupg2 2.0.3
      import gnupg2 2.0.3
      [svn-upgrade] Integrating new upstream version, gnupg2 (2.0.4)
      gnupg 2.0.4
      add watch file
      Merge branch 'upstream'
      Imported gnupg2-2.0.5.orig
      Merge branch 'upstream'
      * New upstream release.
      * docs/scdaemon.texi: Remove old --print-atr documentation. Thanks
      * The "Ubuntu, I would have done it had you only asked" release.
      Imported gnupg2-2.0.6.orig
      Merge branch 'upstream'
      * New upstream release. (Closes: #437289)
      Imported gnupg2-2.0.7.orig
      Merge branch 'upstream'
      * New upstream release.
      Don't run make check, it's broken.
      * debian/watch: Use passive ftp, ftp.gnupg.org doesn't seem happy
      Imported gnupg2-2.0.8.orig
      Merge branch 'upstream'
      * New upstream release. (Closes: #428635)
      * debian/rules: Don't ignore status of make distclean, just check for
      Imported gnupg2-2.0.9.orig
      Merge branch 'upstream'
      New upstream release. Fixes CVE-2008-1530, Key import memory corruption.  (Closes: #472928)
      Add recommends on gnupg-agent.
      Fix FTBFS with gcc 4.3.
      Depend on pinentry instead of recommend, and make pinentry-gtk2 first.
      Finalize changelog
      Merge branch 'patch/gpgkey2ssh-fix'
      Urgency medium to try to beat the release.
      debian/control: Make the description a little more distinctive than gnupg v1's. Thanks Jari Aalto. (Closes: #496323)
      Imported gnupg2-2.0.11.orig
      Merge branch 'upstream'
      New upstream release. (Closes: #496663)
      debian/control: Change build dependency on gs to ghoscript, since ghoscript has been replaced.
      Imported gnupg2-2.0.12.orig
      Merge branch 'upstream'
      New upstream release. (Closes: #499569, #463270, #446494, #314068,  #519375, #514587)
      debian/compat: Use debhelper v7.
      debian/control: Update Standards-Version to 3.8.2.
      debian/control: Use ${misc:Depends}.
      Remove unnecessary patches
      Override pkgdatadir so that it points to /usr/share/gnupg2.
      Imported gnupg-2.0.13
      Merge branch 'upstream'
      New upstream release.
      debian/control: Depend instead of Recommend gnupg-agent. (Closes: #538947)
      debian/control: Build depend on libreadline-dev instead of libreadline5-dev, since libreadline6-dev is out.
      Imported gnupg-2.0.14
      Merge branch 'upstream'
      New upstream release.
      debian/source/format, debian/source/options, debian/source/patch-header: Convert to v3 quilt format, with single-debian-patch.
      debian/control: Tighten dependency on gnupg-agent. (Closes: #551792)
      Finalize changelog
      debian/*.lintian, debian/*.lintian-overrides, debian/rules: Rename lintian files and use dh_lintian instead of shell snippets.
      debian/source/patch-header, debian/source/options: Delete patch header and remove single-debian-patch option.
      debian/patches/01-gnupg2-rename.diff: Move patch to do the necessary renaming of gnupg -> gnupg2 in a quilt patch.
      debian/patches/02-encode-s2k.diff: Added patch to fix passphrase problem in gpgsm. Thanks Martijn van Brummelen for the NMU to fix this problem in 2.0.14-1.1.
      debian/patches/03-gpgsm-realloc.diff: Fix for "Realloc Bug with X.509 certificates" for gpgsm. (Closes: #590122)
      debian/rules, debian/control: Use dh-autoreconf and autopoint to regenerate autotools files at build time.
      Remove config.guess and config.sub from master branch to be in sync with upstream
      debian/patches/04-cve-2012-6085.diff: Patch from upstream to fix CVE-2012-6085, "gnupg key import memory corruption". (Closes: #697251)
      debian/rules: Remove linking of config.{guess,sub} and creation of the version file on clean that breaks newer dpkg-source.
      debian/patches/{03-cve-2013-4402_p1.diff,04-cve-2013-4402_p2.diff}: Fix for CVE-2013-4402, "infinite recursion in the compressed packet parser". (Closes: #725433)
      debian/patches/07-cve-2013-4351.diff: Fix for CVE-2013-4351, "treats
      Fix the distribution.
      debian/patches/08-cve-2014-4617.diff: Fixes CVE-2014-4617 "infinite loop when decompressing data packets". (Closes: #752498)

-----------------------------------------------------------------------

This annotated tag includes the following new commits:

       new  c2ca101   debian/patches/08-cve-2014-4617.diff: Fixes CVE-2014-4617 "infinite loop when decompressing data packets". (Closes: #752498)

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-gnupg/gnupg2.git

More information about the Pkg-gnupg-commit mailing list