Hi, A new version of GnuPG is available. It's a security fix for CVE-2013-4576. The announce here: http://lists.gnupg.org/pipermail/gnupg-announce/2013q4/000337.html Tested on @amd64.
Ok ? -- Pierre-Emmanuel André <pea at raveland.org> GPG key: 0x487CE475
Index: Makefile =================================================================== RCS file: /cvs/ports/security/gnupg/Makefile,v retrieving revision 1.91 diff -u -p -r1.91 Makefile --- Makefile 16 Nov 2013 20:29:00 -0000 1.91 +++ Makefile 19 Dec 2013 09:07:16 -0000 @@ -2,7 +2,7 @@ COMMENT= GNU privacy guard - a free PGP replacement -DISTNAME= gnupg-1.4.15 +DISTNAME= gnupg-1.4.16 CATEGORIES= security # restrict, not compatible with gnupg-2. Index: distinfo =================================================================== RCS file: /cvs/ports/security/gnupg/distinfo,v retrieving revision 1.25 diff -u -p -r1.25 distinfo --- distinfo 16 Nov 2013 20:29:00 -0000 1.25 +++ distinfo 19 Dec 2013 09:07:16 -0000 @@ -1,2 +1,2 @@ -SHA256 (gnupg-1.4.15.tar.gz) = C5Hik+hWbluEHygDKbHm/Xc/fTgmhExpvsZ2Ek4KC7M= -SIZE (gnupg-1.4.15.tar.gz) = 5066798 +SHA256 (gnupg-1.4.16.tar.gz) = 868vnDTDBYaa04tO56ueFIf1CITujZ1CzMsx4c7Vze8= +SIZE (gnupg-1.4.16.tar.gz) = 5073484 Index: patches/patch-mpi_longlong_h =================================================================== RCS file: patches/patch-mpi_longlong_h diff -N patches/patch-mpi_longlong_h --- patches/patch-mpi_longlong_h 3 Feb 2013 14:52:46 -0000 1.1 +++ /dev/null 1 Jan 1970 00:00:00 -0000 @@ -1,12 +0,0 @@ -$OpenBSD: patch-mpi_longlong_h,v 1.1 2013/02/03 14:52:46 bcallah Exp $ ---- mpi/longlong.h.orig Sat Feb 2 12:49:16 2013 -+++ mpi/longlong.h Sat Feb 2 12:51:51 2013 -@@ -752,7 +752,7 @@ extern USItype __udiv_qrnnd (); - (w1) = _r >> 64; \ - (w0) = (UDItype) _r; \ - } while (0) --# elif if __GNUC__ > 2 || __GNUC_MINOR__ >= 7 -+# elif __GNUC__ > 2 || __GNUC_MINOR__ >= 7 - # define umul_ppmm(w1, w0, u, v) \ - __asm__ ("dmultu %2,%3" \ - : "=l" ((UDItype)(w0)), \