---
- branch: MAIN
  date: Wed Dec 18 18:56:24 UTC 2013
  files:
  - new: '1.123'
    old: '1.122'
    path: pkgsrc/security/gnupg/Makefile
    pathrev: pkgsrc/security/gnupg/Makefile@1.123
    type: modified
  - new: '1.63'
    old: '1.62'
    path: pkgsrc/security/gnupg/distinfo
    pathrev: pkgsrc/security/gnupg/distinfo@1.63
    type: modified
  id: 20131218T185624Z.1b499797edc820d55c784a02ebc1dfdc473909f4
  log: |
    Update to 1.4.16:

    Noteworthy changes in version 1.4.16 (2013-12-18)
    -------------------------------------------------

     * Fixed the RSA Key Extraction via Low-Bandwidth Acoustic
       Cryptanalysis attack as described by Genkin, Shamir, and Tromer.
       See <http://www.cs.tau.ac.il/~tromer/acoustic/>.  [CVE-2013-4576]

     * Put only the major version number by default into armored output.

     * Do not create a trustdb file if --trust-model=always is used.

     * Print the keyid for key packets with --list-packets.

     * Changed modular exponentiation algorithm to recover from a small
       performance loss due to a change in 1.4.14.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/security/gnupg'
  unixtime: '1387392984'
  user: wiz