PGP / gpg スレ (532レス)
1-
1: 秘密 [秘密] 01/12/03 05:25 AAS
秘密を守る人のスレ
513: 2024/09/13(金)12:53 AAS
Changes which will also show up in the firthcoming 2.4.6:

* gpg: New command --quick-set-ownertrust. [rG967678d972]
* gpg: Indicate disabled keys in key listings and add list option "show-ownertrust". [rG2a0a706eb2]
* gpg: Make sure a DECRYPTION_OKAY is never issued for a bad OCB tag. [T7042]
* gpg: Do not allow to accidently set the RENC usage. [T7072]
* gpg: Accept armored files without CRC24 checksum. [T7071]
* gpg: New --import-option "only-pubkeys". [T7146]
* gpg: Repurpose the AKL mechanism "ldap" to work like the keyserver mechnism but only for LDAP keyservers. [rG068ebb6f1e]
* gpg: ADSKs are now configurable for new keys. [T6882]
* gpgsm: Emit user IDs with an empty Subject also in colon mode. [T7171]
省11
514: 2024/09/13(金)12:54 AAS
GnuPG 2.5.1 (2.6系に向けた公開テスト版)

Noteworthy changes in version 2.5.1 (2024-09-12)
================================================
[compared to version 2.5.0]
* gpg: The support for composite Kyber+ECC public key algorithms does now use the final FIPS-203 and LibrePGP specifications. The experimental keys from 2.5.0 are no longer supported. [T6815]
* gpg: New commands --add-recipients and --change-recipients. [T1825]
* gpg: New option --proc-all-sigs. [T7261]
* gpg: Fix a regression in 2.5.0 in gpgme's tests. [T7195]
* gpg: Make --no-literal work again for -c and --store. [T5852]
* gpg: Improve detection of input data read errors. [T6528]
省9
515: 2024/10/30(水)08:33 AAS
GnuPG 2.4.6

Noteworthy changes in version 2.4.6
===================================
* gpg: New command --quick-set-ownertrust. [rG967678d972]
* gpg: Indicate disabled keys in key listings and add list option "show-ownertrust". [rG2a0a706eb2]
* gpg: Make sure a DECRYPTION_OKAY is never issued for a bad OCB tag. [T7042]
* gpg: Do not allow to accidently set the RENC usage. [T7072]
* gpg: Accept armored files without CRC24 checksum. [T7071]
* gpg: New --import-option "only-pubkeys". [T7146]
* gpg: Repurpose the AKL mechanism "ldap" to work like the keyserver mechnism but only for LDAP keyservers. [rG6551281ca3]
省23
516: 2024/10/30(水)08:33 AAS
2.2は今年いっぱいでEOLなので注意
517: 2024/11/03(日)07:35 AAS
lts にしてゾンビ化しようず
518: 2024/11/28(木)20:55 AAS
GnuPG 2.4.7 & Gpg4win 4.4.0

Noteworthy changes in version 2.4.7
===================================

* gpg: Allow the use of an ADSK subkey as ADSK subkey. [T6882]
* gpg: Avoid a failure exit code for expired ultimately trusted keys. [T7351]
* gpg: Fix comparing ed448 to ed25519 with --assert-pubkey-algo. [T7425]
* gpg: Retain binary representation for import->export with Ed25519 key signatures. [T7426]
* gpgsm: Improvement for some rare P12 files. [rG5f9975abf5]
* scd: More mitigations against lock ups with multiple cards or apps. [T7323, T7402]
* gpgtar: Fix directory creation during extraction. [T7380]
省4
519: 2024/12/06(金)20:53 AAS
GnuPG 2.5.2(テスト版)

Noteworthy changes in version 2.5.2 (2024-12-05)
================================================
[compared to version 2.5.1]

* gpg: Add option 16 to --full-gen-key to create ECC+Kyber. [T6638]
* gpg: For composite algos add the algo string to the colons listings. [T6638]
* gpg: Validate the trustdb after the import of a trusted key. [T7200]
* gpg: Exclude expired trusted keys from the key validation process. [T7200]
* gpg: Fix a wrong decryption failed status for signed and OCB encrypted messages without a signature verification key. [T7042]
* gpg: Retain binary representation for import->export with Ed25519 key signatures. [T7426]
省15
520: 2024/12/06(金)20:53 AAS
* scd: More mitigations against lock ups with multiple cards or apps. [T7323, T7402]
* gpgtar: Use log-file from common.conf only in --batch mode. [rGb389e04ef5]
* gpgtar: Fix directory creation during extraction. [T7380]
* gpg-mail-tube: Minor fixes.
* gpgconf: Add list flag to trusted-key et al. [T7313]
* Implement GNUPG_ASSUME_COMPLIANCE envvar and registry key for testing de-vs compliance mode. [rGb287fb5775,rG7b0be541a9]
* Enable additional runtime protections in speedo builds for Windows. [rG39aa206dc5]
* Fix a race condition in creating the socket directory. [T7332]
* Fix a build problem on macOS (missing unistd.h). [T7193]

Release-info: 外部リンク:dev.gnupg.org
521: 01/14(火)19:03 AAS
GnuPG 2.5.3 (テスト版)

Noteworthy changes in version 2.5.3 (2025-01-09)
================================================
[compared to version 2.5.2]

* gpg: Allow for signature subpackets of up to 30000 octets. [rG36dbca3e69]
* gpg: Silence expired trusted-key diagnostics in quiet mode. [T7351]
* gpg: Allow smaller session keys with Kyber and enforce the use of AES-256 if useful. [T7472]
* gpg: Fix regression in key generation from existing card key. [T7309,T7457]
* gpg: Print a warning if the card backup key could not be written. [T2169]
* The --supervised options of gpg-agent and dirmngr have been renamed to --deprecated-supervised as preparation for their removal. [rGa019a0fcd8]
省2
522: 02/13(木)00:42 AAS
GnuPG 2.5.4 (テスト版)

Noteworthy changes in version 2.5.4 (2025-02-12)
================================================
[compared to version 2.5.3]

* gpg: New option --disable-pqc-encryption. [rG00c31f8b04]
* gpg: Fix --quick-add-key for Weierstrass ECC with usage given. [T7506]
* gpg: Fix handling with no CRC armor. [T7071]
* gpg: New private Kyber keys are now cross-referenced using a new Link attribute. [T6638]
* gpg: Fix an import problem with keys having another primary key as a subkey. [T7527]
* gpgsm: Allow unattended PKCS#12 export without passphrase. [rG159e801043]
省5
523: 03/08(土)12:45 AAS
GnuPG 2.5.5 (テスト版)

Noteworthy changes in version 2.5.5 (2025-03-07)
================================================
[compared to version 2.5.4]

* gpg: Fix a verification DoS due to a malicious subkey in the keyring. [T7527]
* dirmngr: Fix possible hangs due to blocking connection requests. [T6606, T7434]
* w32: On socket nonce mismatch close the socket. [T7434]
* w32: Print more detailed diagnostics for IPC errors.
* GPGME is not any more distributed with the Windows installer. Please install gpg4win to get gpgme version.

Release-info: 外部リンク:dev.gnupg.org
524: 03/08(土)12:46 AAS
外部リンク[html]:www.gpg4win.org

Gpg4win開発版はこちらからダウンロード可能
(今リンクされてる5.0.0-beta103に含まれてるのはGnuPG 2.5.4なので注意)
525: 03/11(火)14:55 AAS
Gpg4win 5.0.0-beta145
これにはGnuPG 2.5.5が入ってる
526: 05/09(金)22:20 AAS
GnuPG 2.5.6 (テスト版) & Gpg4win 5.0.0-beta190

Noteworthy changes in version 2.5.6 (2025-05-08)
================================================
[compared to version 2.5.5]

* gpg: Add a flag to the filter expressions for left anchored substring match. [rGc12b7d047e]
* gpg: New list option "show-trustsig" to avoid resorting to colon mode for this info. [rG41d6ae8f41]
* gpg: New command --quick-tsign-key to create a trust signature. [rGd90b290f97]
* gpg: New keygen parameter "User-Id". [rGcfd597c603]
* gpg: New list options "show-trustsig". [rGrG41d6ae8f41]
* gpg: Fix double free of internal data in no-sig-cache mode [T7547]
省13
527: 05/27(火)14:37 AAS
Gpg4win 4.4.1

深刻なセキュリティ脆弱性の修正のためアップデート推奨
(入ってるGnuPG 2.4.8は公式にはまだリリースアナウンスされていないバージョン)

About the vulnerability:
Embedded malicious fonts in a PDF file may lead to code execution in Okular. CVSS Base Score: 8.1 (v3.1)
Details 外部リンク:euvd.enisa.europa.eu (alternative ids: CVE-2025-27363, GHSA-g8qj-jv5h-78cp)

There are other good things in Gpg4win 4.4.1, for example
* improvements in the Outlook Add-in (GpgOL)
* a better Kleopatra
* GnuPG upgraded to v2.4.8
省1
528: 06/03(火)09:22 AAS
GnuPG 2.5.7 (テスト版)

Noteworthy changes in version 2.5.7 (2025-06-02)
================================================
[compared to version 2.5.6]

* gpg: Allow updating a SHA-1 key certification w/o using the --force-sign-key option. [T7663]
* gpg: The group key flag has now been fully implemented. [rG8833a34bf0]
* gpg: Make combination of show-only-fpr-mbox and show-unusable-uid work. [rGd5a4a2dc89]
* gpg: Do not allow compressed key packets on import. [T7014]
* gpgsm: Allow an empty subject DN also during import. [T7171]
* agent: Recover the old behavior with max-cache-ttl=0. [T6681]
省7
529: 06/03(火)21:34 AAS
リリースアナウンスは出てないけど

外部リンク[html]:www.gnupg.org
> GnuPG 2.4.8 2025-05-14

5/14付で安定版2.4.8が出てることになってる
530: 06/21(土)01:06 AAS
GnuPG 2.5.8 (テスト版)

Noteworthy changes in version 2.5.8 (2025-06-20)
================================================
[compared to version 2.5.7]

* gpg: Show revocation reason with a standard -k listing. [T7083]
* gpg: Emit a revocation reason as comment in a "pub" record. [T7083]
* agent: Fix regression in 2.5.7 decrypting with a card based cv25519 key. [T7676]
* scd:openpgp: Fix a regression in exporting card based ed25519 ssh keys. [T7589]
* dirmngr: Do not require a keyserver for "gpg --fetch-key". [T7693]

Release-info: 外部リンク:dev.gnupg.org
省1
531: 07/02(水)08:24 AAS
Gpg4win 5.0.0-beta336

外部リンク[html]:www.gpg4win.org

同梱のGnuPGも2.5.8になってる
532: 07/14(月)23:15 AAS
GnuPG 2.5.9 & Gpg4win 5.0.0-beta345

Noteworthy changes in version 2.5.9 (2025-07-10)
================================================
[compared to version 2.5.8]

* gpg: Add the revocation reason to the sigclass of a "rev" line.
Regression in 2.5.7. [T7073]
* gpg: Do not show the non-standard secp256k1 curve in the menu to select the curve. It can however be specified using its name. [rG49a9171f63]
* gpg: Fix regression in using the secp256k1 curve. [T7698]
* dirmngr: New option --user-agent and send a default User-Agent of "GnuPG/2.6" for all HTTP requests. [T7715]

Release-info: 外部リンク:dev.gnupg.org
1-
スレ情報 赤レス抽出 画像レス抽出 歴の未読スレ AAサムネイル
ぬこの手 ぬこTOP 1.324s*