Bug Fix Advisory gnupg bug fix update

Advisory: RHBA-2009:0134-3
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2009-01-20
Last updated on: 2009-01-20
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
OVAL: N/A

Details

An updated gnupg package that fixes a bug is now available.

GnuPG is a utility for encrypting data and creating digital signatures.

This package addresses the following bug:

* When the gpg command was used to decrypt multiple files using the
"--multifile --decrypt" (or "--decrypt-files") arguments, gpg would
incorrectly indicate that the result (multiple unencrypted items) was
an error. Gpg now correctly displays the result without error.

Users of gnupg should upgrade to this updated package, which resolves
this issue.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Enterprise Linux (v. 5 server)
SRPMS:
gnupg-1.4.5-14.src.rpm     b87242a6a02384897c9ca3468c7d7f2b
 
IA-32:
gnupg-1.4.5-14.i386.rpm     397b75b297373baa54ef1f8c71b301a4
 
IA-64:
gnupg-1.4.5-14.ia64.rpm     fc69c24cf1680d8e9dbb4328bdaebbd0
 
PPC:
gnupg-1.4.5-14.ppc.rpm     48bfe07a82b2aaa14c0169a042c88181
 
s390x:
gnupg-1.4.5-14.s390x.rpm     d475b4e10bade0f90007e2ed22413795
 
x86_64:
gnupg-1.4.5-14.x86_64.rpm     57222e4f3a1d0afd1cab14177c95eebb
 
Red Hat Enterprise Linux Desktop (v. 5 client)
SRPMS:
gnupg-1.4.5-14.src.rpm     b87242a6a02384897c9ca3468c7d7f2b
 
IA-32:
gnupg-1.4.5-14.i386.rpm     397b75b297373baa54ef1f8c71b301a4
 
x86_64:
gnupg-1.4.5-14.x86_64.rpm     57222e4f3a1d0afd1cab14177c95eebb
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

442815 - Incorrect detection of multiple plaintexts


Keywords

multiple, plaintext

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/