Publishing details

Removed from disk on 2016-11-01.
Removal requested on 2016-10-26.
Published on 2015-04-01
Copied from ubuntu lucid in PPA for Ubuntu Security Proposed by Ubuntu Archive Robot

Changelog

gnupg (1.4.10-2ubuntu1.8) lucid-security; urgency=medium

  * SECURITY UPDATE: sidechannel attack on Elgamal
    - debian/patches/CVE-2014-3591.dpatch: use ciphertext blinding in
      cipher/elgamal.c.
    - CVE-2014-3591
  * SECURITY UPDATE: sidechannel attack via timing variations in mpi_powm
    - debian/patches/CVE-2015-0837.dpatch: avoid timing variations in
      include/mpi.h, mpi/mpi-pow.c, mpi/mpiutil.c.
    - CVE-2015-0837
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.dpatch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.dpatch: use inline functions to convert
      buffer data to scalars in g10/apdu.c, g10/app-openpgp.c,
      g10/build-packet.c, g10/ccid-driver.c, g10/getkey.c, g10/keygen.c,
      g10/keyid.c, g10/misc.c, g10/parse-packet.c, g10/tdbio.c,
      g10/trustdb.c, include/host2net.h.
    - CVE-2015-1607
 -- Marc Deslauriers <email address hidden>   Wed, 25 Mar 2015 14:34:25 -0400

Available diffs

diff from 1.4.10-2ubuntu1.7 (in ~ubuntu-security/ubuntu/ppa) to 1.4.10-2ubuntu1.8 (8.9 KiB)
diff from 1.4.10-2ubuntu1.1 to 1.4.10-2ubuntu1.8 (19.6 KiB)

Builds

Package files

gnupg-curl_1.4.10-2ubuntu1.8_amd64.deb (77.0 KiB)
gnupg-curl_1.4.10-2ubuntu1.8_armel.deb (74.7 KiB)
gnupg-curl_1.4.10-2ubuntu1.8_i386.deb (74.8 KiB)
gnupg-curl_1.4.10-2ubuntu1.8_ia64.deb (89.3 KiB)
gnupg-curl_1.4.10-2ubuntu1.8_powerpc.deb (76.0 KiB)
gnupg-curl_1.4.10-2ubuntu1.8_sparc.deb (75.4 KiB)
gnupg-udeb_1.4.10-2ubuntu1.8_amd64.udeb (409.0 KiB)
gnupg-udeb_1.4.10-2ubuntu1.8_armel.udeb (391.5 KiB)
gnupg-udeb_1.4.10-2ubuntu1.8_i386.udeb (375.7 KiB)
gnupg-udeb_1.4.10-2ubuntu1.8_ia64.udeb (667.9 KiB)
gnupg-udeb_1.4.10-2ubuntu1.8_powerpc.udeb (481.8 KiB)
gnupg-udeb_1.4.10-2ubuntu1.8_sparc.udeb (424.8 KiB)
gnupg_1.4.10-2ubuntu1.8.diff.gz (46.8 KiB)
gnupg_1.4.10-2ubuntu1.8.dsc (2.1 KiB)
gnupg_1.4.10-2ubuntu1.8_amd64.deb (1.1 MiB)
gnupg_1.4.10-2ubuntu1.8_armel.deb (1.0 MiB)
gnupg_1.4.10-2ubuntu1.8_i386.deb (1.0 MiB)
gnupg_1.4.10-2ubuntu1.8_ia64.deb (1.4 MiB)
gnupg_1.4.10-2ubuntu1.8_powerpc.deb (1.1 MiB)
gnupg_1.4.10-2ubuntu1.8_sparc.deb (1.1 MiB)
gnupg_1.4.10.orig.tar.gz (4.5 MiB)
gpgv-udeb_1.4.10-2ubuntu1.8_amd64.udeb (148.9 KiB)
gpgv-udeb_1.4.10-2ubuntu1.8_armel.udeb (135.6 KiB)
gpgv-udeb_1.4.10-2ubuntu1.8_i386.udeb (131.7 KiB)
gpgv-udeb_1.4.10-2ubuntu1.8_ia64.udeb (239.6 KiB)
gpgv-udeb_1.4.10-2ubuntu1.8_powerpc.udeb (170.8 KiB)
gpgv-udeb_1.4.10-2ubuntu1.8_sparc.udeb (149.4 KiB)
gpgv_1.4.10-2ubuntu1.8_amd64.deb (223.1 KiB)
gpgv_1.4.10-2ubuntu1.8_armel.deb (194.1 KiB)
gpgv_1.4.10-2ubuntu1.8_i386.deb (203.7 KiB)
gpgv_1.4.10-2ubuntu1.8_ia64.deb (326.7 KiB)
gpgv_1.4.10-2ubuntu1.8_powerpc.deb (219.5 KiB)
gpgv_1.4.10-2ubuntu1.8_sparc.deb (210.7 KiB)