Debian Package Tracker

general

source: gnupg2 (main)
version: 2.2.13-1
maintainer: Debian GnuPG Maintainers (archive) [DMD]
uploaders: Eric Dorland [DMD] – Daniel Kahn Gillmor [DMD]
arch: all any
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 2.0.26-6+deb8u2
old-sec: 2.0.26-6+deb8u2
stable: 2.1.18-8~deb9u4
stable-sec: 2.1.18-8~deb9u2
stable-bpo: 2.2.12-1~bpo9+1
testing: 2.2.12-1
unstable: 2.2.13-1
exp: 2.2.15-1

versioned links

2.0.26-6+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.1.18-8~deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.1.18-8~deb9u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.12-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.12-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.13-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.14-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.15-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

dirmngr
gnupg
gnupg-agent
gnupg-l10n
gnupg-utils
gnupg2
gpg
gpg-agent
gpg-wks-client
gpg-wks-server
gpgconf
gpgsm
gpgv
gpgv-static
gpgv-udeb
gpgv-win32
gpgv2
scdaemon

action needed

A new upstream version is available: 2.2.15 high

A new upstream version 2.2.15 is available, you should consider packaging it.

Created: 2019-03-20 Last update: 2019-04-25 23:32

1 bug tagged help in the BTS normal

The BTS contains 1 bug tagged help, please consider helping the maintainer in dealing with it.

Created: 2019-03-21 Last update: 2019-04-26 04:02

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2019-04-01 Last update: 2019-04-26 04:02

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 2-day delay is over. Check why.

Created: 2019-03-13 Last update: 2019-04-26 03:01

Depends on packages which need a new maintainer normal

The packages that gnupg2 depends on which need a new maintainer are:

lsb (#924519)
- Depends: lsb-base
xloadimage (#919265)
- Suggests: xloadimage

Created: 2019-01-14 Last update: 2019-04-26 02:36

1 new commit since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 1052c79b68d364df3e74ce0666bf9d900c567174
Author: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Date:   Sat Apr 20 23:56:35 2019 -0400

    Correct gpg-wks-server manpage (Closes: #927431) Thanks, ju xor!

Created: 2019-04-21 Last update: 2019-04-25 10:31

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2018-9234: GnuPG 2.2.4 and 2.2.5 does not enforce a configuration in which key certification requires an offline master Certify key, which results in apparently valid certifications that occurred only with access to a signing subkey.

Please fix it.

Created: 2018-04-05 Last update: 2019-03-03 01:03

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2018-1000858: GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery (CSRF) vulnerability in dirmngr that can result in Attacker controlled CSRF, Information Disclosure, DoS. This attack appear to be exploitable via Victim must perform a WKD request, e.g. enter an email address in the composer window of Thunderbird/Enigmail. This vulnerability appears to have been fixed in after commit 4a4bb874f63741026bd26264c43bb32b1099f060.
CVE-2018-9234: GnuPG 2.2.4 and 2.2.5 does not enforce a configuration in which key certification requires an offline master Certify key, which results in apparently valid certifications that occurred only with access to a signing subkey.

Please fix them.

Created: 2018-04-05 Last update: 2019-03-03 01:03

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2017-10-26 07:22

testing migrations

This package will soon be part of the auto-readline transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- 54 days old (2 needed)
- Piuparts tested OK - https://piuparts.debian.org/sid/source/g/gnupg2.html
- Required age reduced by 3 days because of autopkgtest
- Checking build-dependency (indep) on amd64
- Not touching package due to block-udeb request by freeze (please contact the d-i release manager if an update is needed)
- Not touching package due to block request by freeze (please contact debian-release if update is needed)
- Not considered

news

[rss feed]

[2019-04-01] Accepted gnupg2 2.2.15-1 (source) into experimental (Daniel Kahn Gillmor)
[2019-03-20] Accepted gnupg2 2.2.14-1 (source) into experimental (Daniel Kahn Gillmor)
[2019-03-02] Accepted gnupg2 2.2.13-1 (source) into unstable (Daniel Kahn Gillmor)
[2019-02-09] Accepted gnupg2 2.1.18-8~deb9u4 (source) into proposed-updates->stable-new, proposed-updates (Daniel Kahn Gillmor)
[2019-01-03] Accepted gnupg2 2.2.12-1~bpo9+1 (source) into stretch-backports (Roger Shimizu)
[2018-12-20] gnupg2 2.2.12-1 MIGRATED to testing (Debian testing watch)
[2018-12-15] Accepted gnupg2 2.2.12-1 (source) into unstable (Daniel Kahn Gillmor)
[2018-11-21] gnupg2 2.2.11-1 MIGRATED to testing (Debian testing watch)
[2018-11-18] Accepted gnupg2 2.2.11-1 (source) into unstable (Daniel Kahn Gillmor)
[2018-11-02] Accepted gnupg2 2.1.18-8~deb9u3 (source) into proposed-updates->stable-new, proposed-updates (Daniel Kahn Gillmor)
[2018-10-13] Accepted gnupg2 2.2.10-3~bpo9+1 (source) into stretch-backports (Roger Shimizu)
[2018-10-11] gnupg2 2.2.10-3 MIGRATED to testing (Debian testing watch)
[2018-10-08] Accepted gnupg2 2.2.10-3 (source) into unstable (Daniel Kahn Gillmor)
[2018-10-04] Accepted gnupg2 2.2.10-2~bpo9+1 (source) into stretch-backports (Roger Shimizu)
[2018-10-03] gnupg2 2.2.10-2 MIGRATED to testing (Debian testing watch)
[2018-09-30] Accepted gnupg2 2.2.10-2 (source) into unstable (Daniel Kahn Gillmor)
[2018-09-06] Accepted gnupg2 2.2.10-1~bpo9+1 (source) into stretch-backports (Roger Shimizu)
[2018-09-02] gnupg2 2.2.10-1 MIGRATED to testing (Debian testing watch)
[2018-08-31] Accepted gnupg2 2.2.9-1~bpo9+1 (source amd64 all) into stretch-backports, stretch-backports (Roger Shimizu)
[2018-08-30] Accepted gnupg2 2.2.10-1 (source) into unstable (Daniel Kahn Gillmor)
[2018-08-24] Accepted gnupg2 2.2.9-2 (source) into unstable (Daniel Kahn Gillmor)
[2018-07-24] gnupg2 2.2.9-1 MIGRATED to testing (Debian testing watch)
[2018-07-22] Accepted gnupg2 2.2.9-1 (source) into unstable (Daniel Kahn Gillmor)
[2018-06-24] gnupg2 2.2.8-3 MIGRATED to testing (Debian testing watch)
[2018-06-21] Accepted gnupg2 2.2.8-3 (source) into unstable (Daniel Kahn Gillmor)
[2018-06-20] gnupg2 2.2.8-1 MIGRATED to testing (Debian testing watch)
[2018-06-12] Accepted gnupg2 2.1.18-8~deb9u2 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2018-06-12] Accepted gnupg2 2.0.26-6+deb8u2 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Salvatore Bonaccorso)
[2018-06-08] Accepted gnupg2 2.0.26-6+deb8u2 (source) into oldstable->embargoed, oldstable (Salvatore Bonaccorso)
[2018-06-08] Accepted gnupg2 2.1.18-8~deb9u2 (source) into stable->embargoed, stable (Salvatore Bonaccorso)

bugs [bug history graph]

all: 221 232
RC: 0
I&N: 167 175
M&W: 52 55
F&P: 2
patch: 1
help: 1

links

homepage
lintian
buildd: logs, exp, checks, clang, reproducibility, cross
popcon
debci
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.2.12-1ubuntu3
53 bugs (1 patch)
patches for 2.2.12-1ubuntu3