Your message dated Wed, 29 Jun 2016 22:22:14 +0000 with message-id <[email protected]> and subject line Bug#828109: fixed in gnupg2 2.1.13-3 has caused the Debian Bug report #828109, regarding gnupg2: does not react well to bad ECDSA subkey packet to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 828109: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=828109 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: gnupg2 Version: 2.1.11-7 Severity: normal When running either gpg2 --no-default-keyring --keyring hOpenPGP/tests/data/debian-keyring.gpg --list-packets or gpg2 --list-packets hOpenPGP/tests/data/debian-keyring.gpg (on the tests/data/debian-keyring.gpg from the haskell-hopenpgp source package), gpg2 chokes on the ECDSA subkey of gniibe. I believe that it has a non-conformant MPI payload, but this being a fatal condition seems suboptimal.
--- End Message ---
--- Begin Message ---Source: gnupg2 Source-Version: 2.1.13-3 We believe that the bug you reported is fixed in the latest version of gnupg2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Daniel Kahn Gillmor <[email protected]> (supplier of updated gnupg2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 28 Jun 2016 13:46:36 -0400 Source: gnupg2 Binary: gnupg-agent scdaemon gpgsm gnupg gnupg2 gpgv gpgv2 dirmngr gpgv-udeb gpgv-win32 Architecture: source Version: 2.1.13-3 Distribution: experimental Urgency: medium Maintainer: Debian GnuPG Maintainers <[email protected]> Changed-By: Daniel Kahn Gillmor <[email protected]> Description: dirmngr - GNU privacy guard - network certificate management service gnupg - GNU privacy guard - a free PGP replacement gnupg-agent - GNU privacy guard - cryptographic agent gnupg2 - GNU privacy guard - a free PGP replacement (dummy transitional pa gpgsm - GNU privacy guard - S/MIME version gpgv - GNU privacy guard - signature verification tool gpgv-udeb - minimal signature verification tool (udeb) gpgv-win32 - GNU privacy guard - signature verification tool (win32 build) gpgv2 - GNU privacy guard - signature verification tool (dummy transition scdaemon - GNU privacy guard - smart card support Closes: 814584 825911 828109 Changes: gnupg2 (2.1.13-3) experimental; urgency=medium . * pull bugfixes from upstream (Closes: #828109, #814584) * should also allow for reproducible builds, with fix to timestamps in tofu.test * provide supervised dirmngr, gpg-agent, and scdaemon services from systemd's user sessioniif the user wants to enable them. These services should terminate at logout (Closes: #825911) * avoid launching gpg-agent from Xsession.d since we have more robust session management available (added NEWS entry about this change) * gnupg-agent now Provides: gpg-agent to mitigate common confusion. * updated dirmngr package description. Checksums-Sha1: 5bf3f2bd7cc9c3aa146a4da121363d7532b1a0f8 3112 gnupg2_2.1.13-3.dsc 8bae9501ea7c696002e242e140be3d8850d80c47 41282 gnupg2_2.1.13-3.debian.tar.bz2 Checksums-Sha256: 20ac9a156ac15b1fbc68654e7e8097aa294c623b7c2f42e6b97bee5f699e1f02 3112 gnupg2_2.1.13-3.dsc 11183868e1c5464871a58361260bfa27af3795ddc0e2f00bce06f211e10149e6 41282 gnupg2_2.1.13-3.debian.tar.bz2 Files: 03bd608331bfa97519a75b1b798e7e68 3112 utils optional gnupg2_2.1.13-3.dsc 72b2621b7db183db48c673c38e5a25b6 41282 utils optional gnupg2_2.1.13-3.debian.tar.bz2 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQKTBAEBCgB9BQJXdDqvXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFREIyRTc0RjU2RkNGMkI2NzI5N0I3MzUy NEVDRkY1QUZGNjgzNzBBFhxka2dAZmlmdGhob3JzZW1hbi5uZXQACgkQJOz/Wv9o Nwpa5g//afH3y1t7g0JiSk7y0eDyzVzfOvBrYlZlQ6Yys7K5iZTwGL8Xd0y2wgEC BsbnsP0/Veait7p574lp5yEkXLEAPDDTCgfx3nVrGTAYDloxVS1DdkCBmk8TC9Em G78dlev3p63cFHYo/Joo35ZjBxGTv2dDGq3cr/JRG846yM+yYxXYR0IHfgsQhqzb mZnxCeQ/ttS1Khn3Qiki45ey/ePZSN5dk5mXKQ/APgDXrrA62fFQKcQZX8T9fzpe ki2yHbljdxsc9nBr8mBhj6BjvfMdeuTQ8X0qg8YXVEw64dSSNvieYfkIVywnsLYK m3j/Zq2zGxgnZo/SRar6CYucqT3xCFuxyT1v585wUBG3PO0l8l3RrXA4ZtdcW0kD 6THsH3Fad2Tj/zvo2vh7fFArALSHWFbOqNByjwwwhcCB+nYqfdUOuK95hh2KLcs/ 5w3BV7nuZHCCH9ITHqih8042JBGqOAPL+1LFTqidqctgeVyObbpur/yUPuo0Zd3K uqTifF676gv8JQrK77o5pe5xQpAT+17oSlrRdyzq1JK9eogWFi7rZHYlq4FEavHY +/Rrvgz6W4oXJHRfcbCTs7tMw127HfXzUNRRH3CI4nP07WVuZVqPDxa76/OftlbO eILXrHv18SPP6FBsXX6Uj0ZehDCi+rIzwtX4VZdUbvtJed3YWIM= =jmvR -----END PGP SIGNATURE-----
--- End Message ---

