FEDORA-2018-3fc05e009d created by tmraz 3 years ago for Fedora 27
stable

Minor update from upstream with fix for CVE-2018-9234 and other bug fixes.

How to install

sudo dnf upgrade --advisory=FEDORA-2018-3fc05e009d

This update has been submitted for testing by tmraz.

3 years ago

This update has been pushed to testing.

3 years ago
User Icon mzink commented & provided feedback 3 years ago
karma

Works for me

User Icon hreindl commented & provided feedback 3 years ago
karma

works for me

This update has been submitted for batched by bodhi.

3 years ago

This update has been submitted for stable by bodhi.

3 years ago

This update has been pushed to stable.

3 years ago

This broke at least the libostree GPG unit tests, we're still investigating: https://github.com/ostreedev/ostree/pull/1539#issuecomment-381980639

User Icon rathann commented & provided feedback 3 years ago
karma

Breaks mutt's checking GnuPG/PGP signatures in e-mails (via gpgme) if the signer's key is not in my keyring. Rolling back to 2.2.5-1 fixes this. Will file a separate bug about the regression later.

User Icon rathann commented & provided feedback 3 years ago
karma

Actually it works if I update gpgme to 1.10.0-4.fc27 at the same time. You should have added the required dependency information and released both as one update.

Unfortunately it was too late when the regression was found. :(


Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-2
Stable by Karma
2
Stable by Time
disabled
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1563931 CVE-2018-9234 gnupg2: GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys [fedora-all]
0
0
BZ#1565387 gnupg2-2.2.6 is available
0
0

Automated Test Results