diff options
Diffstat (limited to '')
| -rw-r--r-- | g10/ChangeLog | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/g10/ChangeLog b/g10/ChangeLog index 7162a1556..7ae181d9f 100644 --- a/g10/ChangeLog +++ b/g10/ChangeLog @@ -1,5 +1,14 @@ 2006-02-21 David Shaw <[email protected]> + * getkey.c (get_pubkey_byname): Fix minor security problem with + PKA when importing at -r time. The URL in the PKA record may + point to a key put in by an attacker. Fix is to use the + fingerprint from the PKA record as the recipient. This ensures + that the PKA record is followed. + + * keyserver-internal.h, keyserver.c (keyserver_import_pka): Return + the fingerprint we requested. + * gpgv.c: Stub keyserver_import_ldap. * keyserver-internal.h, keyserver.c (keyserver_import_ldap): |