head	1.2;
access;
symbols
	pkgsrc-2013Q2:1.2.0.8
	pkgsrc-2013Q2-base:1.2
	pkgsrc-2012Q4:1.2.0.6
	pkgsrc-2012Q4-base:1.2
	pkgsrc-2011Q4:1.2.0.4
	pkgsrc-2011Q4-base:1.2
	pkgsrc-2011Q2:1.2.0.2
	pkgsrc-2011Q2-base:1.2
	pkgsrc-2010Q4:1.1.0.6
	pkgsrc-2010Q4-base:1.1
	pkgsrc-2010Q3:1.1.0.4
	pkgsrc-2010Q3-base:1.1
	pkgsrc-2010Q2:1.1.0.2;
locks; strict;
comment	@# @;


1.2
date	2011.01.20.08.54.56;	author adam;	state dead;
branches;
next	1.1;

1.1
date	2010.08.03.19.14.42;	author drochner;	state Exp;
branches
	1.1.2.1;
next	;

1.1.2.1
date	2010.08.03.19.14.42;	author spz;	state dead;
branches;
next	1.1.2.2;

1.1.2.2
date	2010.08.08.16.42.51;	author spz;	state Exp;
branches;
next	;


desc
@@


1.2
log
@Changes 2.0.17:
* Allow more hash algorithms with the OpenPGP v2 card.
* The gpg-agent now tests for a new gpg-agent.conf on a HUP.
* Fixed output of "gpgconf --check-options".
* Fixed a bug where Scdaemon sends a signal to Gpg-agent running in
  non-daemon mode.
* Fixed TTY management for pinentries and session variable update
  problem.
@
text
@$NetBSD: patch-an,v 1.1 2010/08/03 19:14:42 drochner Exp $

http://lists.gnupg.org/pipermail/gnupg-announce/2010q3/000302.html
(CVE-2010-2547)

--- kbx/keybox-blob.c.orig	2009-09-21 16:53:44.000000000 +0000
+++ kbx/keybox-blob.c
@@@@ -898,6 +898,7 @@@@ _keybox_create_x509_blob (KEYBOXBLOB *r_
               rc = gpg_error_from_syserror ();
               goto leave;
             }
+	  names = tmp;
         }
       names[blob->nuids++] = p;
       if (!i && (p=x509_email_kludge (p)))
@


1.1
log
@add patch from upstream to fix a possible use-after-free problem
(CVE-2010-2547), bump PKGREVISION
@
text
@d1 1
a1 1
$NetBSD$
@


1.1.2.1
log
@file patch-an was added on branch pkgsrc-2010Q2 on 2010-08-08 16:42:51 +0000
@
text
@d1 15
@


1.1.2.2
log
@Pullup ticket 3199 - requested by gls
security patch

Revisions pulled up:
- pkgsrc/security/gnupg2/Makefile	1.30
- pkgsrc/security/gnupg2/distinfo	1.18

Files added:
pkgsrc/security/gnupg2/patches/patch-an

-------------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Tue Aug  3 19:14:42 UTC 2010

   Modified Files:
           pkgsrc/security/gnupg2: Makefile distinfo
   Added Files:
           pkgsrc/security/gnupg2/patches: patch-an

   Log Message:
   add patch from upstream to fix a possible use-after-free problem
   (CVE-2010-2547), bump PKGREVISION


   To generate a diff of this commit:
   cvs rdiff -u -r1.29 -r1.30 pkgsrc/security/gnupg2/Makefile
   cvs rdiff -u -r1.17 -r1.18 pkgsrc/security/gnupg2/distinfo
   cvs rdiff -u -r0 -r1.1 pkgsrc/security/gnupg2/patches/patch-an
@
text
@a0 15
$NetBSD: patch-an,v 1.1 2010/08/03 19:14:42 drochner Exp $

http://lists.gnupg.org/pipermail/gnupg-announce/2010q3/000302.html
(CVE-2010-2547)

--- kbx/keybox-blob.c.orig	2009-09-21 16:53:44.000000000 +0000
+++ kbx/keybox-blob.c
@@@@ -898,6 +898,7 @@@@ _keybox_create_x509_blob (KEYBOXBLOB *r_
               rc = gpg_error_from_syserror ();
               goto leave;
             }
+	  names = tmp;
         }
       names[blob->nuids++] = p;
       if (!i && (p=x509_email_kludge (p)))
@