Page MenuHome GnuPG
Projects Bug Report

Bug ReportBugs
ActivePublic
Watch Project

Members

  • This project does not have any members.
  • View All

Watchers (2)

Details

Description

Add this tag to everything you consider a bug.

Recent Activity
View All

Thu, Apr 30

ebo edited projects for T8140: Kleopatra: Segfault on start/import, added: gpd5x; removed gpd5x (gpd-5.0.2).

changing it back to general gpd5x (done) as the bug was never in any release.

Thu, Apr 30, 11:48 AM · gpd5x, Bug Report, kleopatra
ebo edited projects for T8140: Kleopatra: Segfault on start/import, added: gpd5x (gpd-5.0.2); removed gpd5x.
Thu, Apr 30, 11:47 AM · gpd5x, Bug Report, kleopatra
werner changed the status of T8244: sc-hsm buffer overflow for keys > 2k, a subtask of T6097: SC-HSM 4K Compatibility, from Open to Testing.
Thu, Apr 30, 9:55 AM · Bug Report
werner changed the status of T8244: sc-hsm buffer overflow for keys > 2k from Open to Testing.
Thu, Apr 30, 9:55 AM · gnupg26, Security, scd, Bug Report
werner triaged T8244: sc-hsm buffer overflow for keys > 2k as Low priority.
Thu, Apr 30, 9:49 AM · gnupg26, Security, scd, Bug Report

Wed, Apr 29

werner changed the status of T8242: gpgrt: Possible stack overflow in es_printf for "%.100f" et al format specifiers. from Open to Testing.
Wed, Apr 29, 2:42 PM · Security, Bug Report, gpgrt
gniibe closed T7677: Duplicate --with-gnu-ld Entries in libgpg-error 1.55 configure Help Output as Resolved.
Wed, Apr 29, 6:29 AM · gpgrt, Bug Report
gniibe closed T8045: Stack-based buffer overflow in TPM2 `PKDECRYPT` as Resolved.
Wed, Apr 29, 6:26 AM · gnupg26, Security, TPM, Bug Report
gniibe closed T7957: dotlock clean up for error/warning message as Resolved.
Wed, Apr 29, 3:55 AM · gnupg, Bug Report
gniibe closed T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x as Resolved.
Wed, Apr 29, 3:48 AM · gpgagent, ssh, Bug Report
gniibe moved T7339: Kleopatra: Cannot decrypt packets with hybrid cipher without using symmetric passphrase from Backlog to WIP on the gpd5x board.
Wed, Apr 29, 3:44 AM · gnupg26, gpd5x, kleopatra, Bug Report
gniibe moved T8048: Keyboxd: S/MIME certificate is imported on ldap search from Backlog to WIP on the gpd5x board.
Wed, Apr 29, 3:43 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x
gniibe moved T7339: Kleopatra: Cannot decrypt packets with hybrid cipher without using symmetric passphrase from Backlog to WIP on the gnupg26 board.
Wed, Apr 29, 3:40 AM · gnupg26, gpd5x, kleopatra, Bug Report
gniibe moved T8048: Keyboxd: S/MIME certificate is imported on ldap search from Backlog to WIP on the gnupg26 board.
Wed, Apr 29, 3:39 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x
gniibe moved T8159: gpgtar write outside --directory via symlink traversal from Backlog to WIP on the gnupg26 board.
Wed, Apr 29, 3:39 AM · gnupg26, gpgtar, Security, Bug Report

Tue, Apr 28

werner created T8242: gpgrt: Possible stack overflow in es_printf for "%.100f" et al format specifiers..
Tue, Apr 28, 11:08 AM · Security, Bug Report, gpgrt

Mon, Apr 27

pl13 moved T8189: GnuPG: Bad signature on import of designated revokation certificate from Backlog to WIP on the gnupg26 board.
Mon, Apr 27, 11:39 AM · Bug Report, gnupg26
gniibe changed the status of T8048: Keyboxd: S/MIME certificate is imported on ldap search from Open to Testing.

Applied to master.

Mon, Apr 27, 6:48 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x

Sun, Apr 26

werner shifted T8210: Kleopatra: LPE issue on Windows from the Restricted Space space to the S1 Public space.
Sun, Apr 26, 6:45 PM · vsd34, gpd5x, kleopatra, Security, Bug Report
werner triaged T8210: Kleopatra: LPE issue on Windows as Normal priority.
Sun, Apr 26, 6:45 PM · vsd34, gpd5x, kleopatra, Security, Bug Report
werner moved T8240: Double free in gpgsm's decrypt function. from Backlog to WiP on the gnupg22 board.
Sun, Apr 26, 6:44 PM · gnupg22, Bug Report, gnupg26
werner changed the status of T8240: Double free in gpgsm's decrypt function. from Open to Testing.
Sun, Apr 26, 6:40 PM · gnupg22, Bug Report, gnupg26
werner renamed T8240: Double free in gpgsm's decrypt function. from Doiuble free in gpgsm's decrypt function. to Double free in gpgsm's decrypt function..
Sun, Apr 26, 6:30 PM · gnupg22, Bug Report, gnupg26

Fri, Apr 24

gniibe added a comment to T8048: Keyboxd: S/MIME certificate is imported on ldap search.

I created a branch https://dev.gnupg.org/source/gnupg/history/gniibe%252Ft8048 and pushed all changes (including keyboxd-patch-2026-04-23).

Fri, Apr 24, 7:06 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x

Thu, Apr 23

ebo added projects to T8210: Kleopatra: LPE issue on Windows: gpd5x, vsd34.

As I'd like to have it in vsd34, I'll set that tag (and of course gpd5x, too)

Thu, Apr 23, 3:09 PM · vsd34, gpd5x, kleopatra, Security, Bug Report
gniibe added a comment to T8048: Keyboxd: S/MIME certificate is imported on ldap search.

Enhance keyboxd to have new command for what keybox_set_flags does.

Thu, Apr 23, 7:01 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x

Wed, Apr 22

werner added a comment to T8208: Missing bounds check in libgcrypt's Dilithium context handling.

FWIW: There is actually a problem in the reference code: Having a
fixed size buffer inside a function and allowing the caller to provide
content at arbitrary length is bad coding style because the caller
needs to know internals of the called function (in a different source
file).

Wed, Apr 22, 10:23 AM · Security, PQC, Bug Report, libgcrypt
werner added a comment to T8211: Libgcrypt ECDH buffer overwrite with zeroes.

This is the original bug report to security at gnupg dated 2026-04-07:

Wed, Apr 22, 10:15 AM · Bug Report, Security, libgcrypt
werner shifted T8211: Libgcrypt ECDH buffer overwrite with zeroes from the Restricted Space space to the S1 Public space.
Wed, Apr 22, 10:12 AM · Bug Report, Security, libgcrypt

Tue, Apr 21

ikloecker added a comment to T8215: Gpg4Win 5.0.2 fails to upgrade from 5.0.1 on Windows 11.
In T8215#217199, @uwi wrote:

Anyway after reboot I could complete the update. The only think I had noticed was that Kleopatra's hair is blue now (it had been red in the past) ;-)

Tue, Apr 21, 11:24 AM · gpd5x, Windows, Installer, Bug Report, gpg4win

Mon, Apr 20

uwi added a comment to T8215: Gpg4Win 5.0.2 fails to upgrade from 5.0.1 on Windows 11.
In T8215#216993, @ikloecker wrote:

By the way, your screenshot shows the wrong folder. That's why you didn't see the file that the error message mentions.

Mon, Apr 20, 9:29 PM · gpd5x, Windows, Installer, Bug Report, gpg4win

Fri, Apr 17

werner shifted T8159: gpgtar write outside --directory via symlink traversal from the Restricted Space space to the S1 Public space.
Fri, Apr 17, 9:47 AM · gnupg26, gpgtar, Security, Bug Report
gniibe added a project to T8159: gpgtar write outside --directory via symlink traversal: gnupg26.
Fri, Apr 17, 9:22 AM · gnupg26, gpgtar, Security, Bug Report
gniibe updated the task description for T8159: gpgtar write outside --directory via symlink traversal.
Fri, Apr 17, 8:59 AM · gnupg26, gpgtar, Security, Bug Report
gniibe triaged T8230: libgcrypt: Use memset_explicit (of C23) to wipe memory as Wishlist priority.

Here is the change:

diff --git a/configure.ac b/configure.ac
index 30be86b5..ac2696e5 100644
--- a/configure.ac
+++ b/configure.ac
@@ -3073,7 +3073,8 @@ AC_CHECK_FUNCS(strtoul memmove stricmp atexit raise)
 AC_CHECK_FUNCS(strerror rand mmap getpagesize sysconf waitpid wait4)
 AC_CHECK_FUNCS(gettimeofday getrusage gethrtime clock_gettime syslog)
 AC_CHECK_FUNCS(syscall fcntl ftruncate flockfile getauxval elf_aux_info)
-AC_CHECK_FUNCS(explicit_bzero explicit_memset getentropy sysctlbyname)
+AC_CHECK_FUNCS(memset_explicit explicit_bzero explicit_memset)
+AC_CHECK_FUNCS(getentropy sysctlbyname)
Fri, Apr 17, 8:40 AM · libgcrypt, Bug Report
gniibe created T8230: libgcrypt: Use memset_explicit (of C23) to wipe memory.
Fri, Apr 17, 8:38 AM · libgcrypt, Bug Report

Thu, Apr 16

werner moved T8197: "gpg --refresh-keys" aborts with "gpg: keyserver refresh failed: No data" if too many keys are missing on keyserver from QA to gnupg-2.2.54 on the gnupg22 board.
Thu, Apr 16, 3:14 PM · gnupg22 (gnupg-2.2.54), Keyserver, gnupg26, Bug Report
werner moved T8197: "gpg --refresh-keys" aborts with "gpg: keyserver refresh failed: No data" if too many keys are missing on keyserver from WIP to Done on the gnupg26 board.
Thu, Apr 16, 3:14 PM · gnupg22 (gnupg-2.2.54), Keyserver, gnupg26, Bug Report
werner closed T8197: "gpg --refresh-keys" aborts with "gpg: keyserver refresh failed: No data" if too many keys are missing on keyserver as Resolved.

Reporter has tested 2.5 - the code in 2.2 is identical; no need for separate testing

Thu, Apr 16, 3:13 PM · gnupg22 (gnupg-2.2.54), Keyserver, gnupg26, Bug Report
werner changed the status of T8078: GpgAgent: trustlist.txt still requires LF on the last line from Open to Testing.
Thu, Apr 16, 3:07 PM · gnupg22, Bug Report, gpgagent, gnupg26
werner moved T8078: GpgAgent: trustlist.txt still requires LF on the last line from Backlog to WIP on the gnupg26 board.

I reworked the reading using our dedicated line reading functions which is used at other places. Extra benefit is that the code now also prints a status line ERROR which gives information on the first faulty line. Thus gpg-connect-agent listtrusted /bye can be sued to quickly check for errors without configuring a log file.

Thu, Apr 16, 3:02 PM · gnupg22, Bug Report, gpgagent, gnupg26
timegrid moved T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely from QA to vsd-3.3.7 on the vsd33 board.
Thu, Apr 16, 12:54 PM · vsd33 (vsd-3.3.7), gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra
timegrid added a comment to T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely.

Looks good to me on vsd-3.3.7-beta90.9 @ win10:

Thu, Apr 16, 12:53 PM · vsd33 (vsd-3.3.7), gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra
ebo edited projects for T8222: Show RSA-PSS certificates as de-vs compliant in X.509 key listings, added: gnupg22 (gnupg-2.2.54); removed gnupg22.
Thu, Apr 16, 12:39 PM · gnupg22 (gnupg-2.2.54), Bug Report, S/MIME, gnupg26
timegrid added a comment to T8222: Show RSA-PSS certificates as de-vs compliant in X.509 key listings.

Looks good to me on vsd-3.3.7-beta90.9 @ win10.

Thu, Apr 16, 11:56 AM · gnupg22 (gnupg-2.2.54), Bug Report, S/MIME, gnupg26
ebo moved T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely from WiP to QA on the vsd33 board.
Thu, Apr 16, 11:22 AM · vsd33 (vsd-3.3.7), gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra
ebo closed T7639: Kleopatra: Version information sometimes not shown. as Resolved.

It is also shown in gpd-5.0.2:

Thu, Apr 16, 9:40 AM · vsd33 (vsd-3.3.3), Bug Report, gpd5x, kleopatra
ebo closed T7678: Kleopatra: revoked UIDs should not be offered for signing and they should be labeled consistently as Resolved.
Thu, Apr 16, 9:28 AM · vsd33 (vsd-3.3.3), Bug Report, kleopatra
gniibe updated the task description for T8227: libgcrypt: Armv9.4-A Guarded Control Stack (GCS) support.
Thu, Apr 16, 9:18 AM · libgcrypt, Bug Report
gniibe added a comment to T8227: libgcrypt: Armv9.4-A Guarded Control Stack (GCS) support.

I found the description in ARM Architecture Reference Manual:
https://developer.arm.com/documentation/ddi0487/mb/-Part-D-The-AArch64-System-Level-Architecture/-Chapter-D11-The-Guarded-Control-Stack/-D11-1-Introduction/-D11-1-3-Overview?lang=en

Thu, Apr 16, 9:16 AM · libgcrypt, Bug Report