GnuPG 1.4/2.0 requires a patch for GCC 5
Bug #1501634 reported by
NIIBE Yutaka
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gnupg (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
gnupg2 (Ubuntu) |
Fix Released
|
Undecided
|
Marc Deslauriers |
Bug Description
Hello,
I am a upstream developer of GnuPG, and we got a bug report.
https:/
https:/
I committed a fix to upstream repository for 1.4 and 2.0.
Then, I realized that Ubuntu uses GCC 5 for building gnupg. Thus, reporting.
I'm not sure if this bug is reproducible on Ubuntu. It is reproducible on my Debian machine.
Please check.
To post a comment you must log in.
This bug is fixed in upstream.
GnuPG 1.4: git.gnupg. org/cgi- bin/gitweb. cgi?p=gnupg. git;a=commit; h=6db18e29eb81b 37ed6feb592add7 7d492c60fc35
http://
GnuPG 2.0: git.gnupg. org/cgi- bin/gitweb. cgi?p=gnupg. git;a=commit; h=b1653a4083b91 cfa85d90f59612f a1c3f4d51778
http://
It had been fixed in development branch before, and the fix was intended to silence a warning at that time. Because of that, the commit log doesn't directly address it's a bug.
Now with GCC 5, we have a concrete example which hits the bug. Namely, OpenPGP-compliant valid signature might be
regected.