FEDORA-2018-69780fc4d7 created by bcl 2 years ago for Fedora 27
stable
  • New upstream v1.4.23 (#1589802,#1589620,#1589624)
  • Remove patches included in upstream release
  • Note that this includes the fix for [CVE-2018-12020]

  • doc Remove documentation for future option faked sys
  • build Don't use dev srandom on OpenBSD
  • Do not use C99 feature
  • g10 Fix regexp sanitization
  • g10 Push compress filter only if compressed
  • gpg Sanitize diagnostic with the original file name [CVE-2018-12020]

How to install

sudo dnf upgrade --advisory=FEDORA-2018-69780fc4d7

This update has been submitted for testing by bcl.

2 years ago

This update has obsoleted gnupg-1.4.22-4.fc27, and has inherited its bugs and notes.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon cserpentis commented & provided feedback 2 years ago
karma

works for me in a VM

User Icon filiperosset commented & provided feedback 2 years ago
karma

no regressions noted

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago
User Icon pwalter commented & provided feedback 2 years ago
karma

Works

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
urgent
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1589624 CVE-2018-12020 gnupg: gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification [fedora-all]
0
0
BZ#1589802 gnupg-1.4.23 is available
0
0

Automated Test Results