Maniphest T7801

Release GnuPG 2.5.13
Open, NormalPublic
Actions

Assigned To

None

Authored By

	• werner
	Sep 2 2025, 2:54 PM

Tags

Subscribers

Description

Noteworthy changes in version 2.5.13 (2025-10-22)

gpg: Fix de-vs compliance with OCB and additional password. [T7804]
gpg: Detect duplicate keys with --add-recipients. [T1825]
gpg: Take care about the prefix for cv25519 encryption. [T7649]
gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures. [rGdb9705ef59]
gpg: Error out on unverified output for non-detached signatures. [rG8abc320f2a]
gpgsm: Use KEM interface for en- and decryption. [T7811,T7845]
gpgsm: Fix delete and store certificate locking glitches. [T7855]
gpg,gpgsm: Run keybox compression only when there are no other users. [T7855]
gpg,gpgsm: Improve keybox closing and locking order on read and write. [T7855]
gpg,gpgsm: Always use share mode read-write for the keybox file access. [T7829]
scd:openpgp: Fix an oddity in changing the PIN. [T7840]
dirmngr: New LDAP keyserver flag "upload". [T7866]
agent: Retry private key deletion in case of sharing violations for up to 400ms. [T7863]
Take care of a possible race on daemon startup under Windows. [T7829]
Improve file renaming on Windows in case of a sharing violation error. [T7829]

(prev: T7756 next: T7869)

Details

External Link: https://lists.gnupg.org/pipermail/gnupg-announce/2025q4/000498.html

Related Objects

Mentioned In: T7869: Release GnuPG 2.5.14
T7756: Release GnuPG 2.5.12
Mentioned Here: rGdb9705ef594d: gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures.
rG8abc320f2a75: gpg: Error out on unverified output for non-detached signatures.
T1825: Add a re-encrypt to additional key
T7649: gnupg: Use KEM interface for encryption/decryption
T7804: de-vs compliance not shown if also password encrypted
T7811: gpgsm: Use KEM interface for decryption
T7829: w32: daemon (gpg-agent/keyboxd/dirmngr) startup and connection race when there is a socket file already
T7840: Oddity with 7816 change_reference_data
T7845: gpgsm: Use KEM interface for encryption
T7855: keybox/keydb locking issue in 2.6
T7863: Kleopatra: the certificate list is not refreshed at the end of the deletion of multiple secret keys
T7866: Allow separate LDAP keyserver for uploading
T7869: Release GnuPG 2.5.14
T7756: Release GnuPG 2.5.12

Event Timeline

• werner triaged this task as Normal priority.Sep 2 2025, 2:54 PM

• werner created this task.

• werner created this object with edit policy "Administrators".

• werner mentioned this in T7756: Release GnuPG 2.5.12.

• werner mentioned this in T7869: Release GnuPG 2.5.14.Wed, Oct 22, 2:16 PM

• werner updated the task description. (Show Details)Wed, Oct 22, 2:21 PM

• werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2025q4/000498.html.Wed, Oct 22, 4:17 PM