-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 01 Jan 2026 15:54:00 +0100
Source: gnupg2
Binary: dirmngr dirmngr-dbgsym gnupg-utils gnupg-utils-dbgsym gpg gpg-agent gpg-agent-dbgsym gpg-dbgsym gpg-wks-client gpg-wks-client-dbgsym gpg-wks-server gpg-wks-server-dbgsym gpgconf gpgconf-dbgsym gpgsm gpgsm-dbgsym gpgv gpgv-dbgsym gpgv-static gpgv-static-dbgsym gpgv-udeb scdaemon scdaemon-dbgsym
Architecture: i386
Version: 2.2.40-1.1+deb12u2
Distribution: bookworm
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) <buildd_amd64-x86-ubc-01@buildd.debian.org>
Changed-By: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Description:
 dirmngr    - GNU privacy guard - network certificate management service
 gnupg-utils - GNU privacy guard - utility programs
 gpg        - GNU Privacy Guard -- minimalist public key operations
 gpg-agent  - GNU privacy guard - cryptographic agent
 gpg-wks-client - GNU privacy guard - Web Key Service client
 gpg-wks-server - GNU privacy guard - Web Key Service server
 gpgconf    - GNU privacy guard - core configuration utilities
 gpgsm      - GNU privacy guard - S/MIME version
 gpgv       - GNU privacy guard - signature verification tool
 gpgv-static - minimal signature verification tool (static build)
 gpgv-udeb  - minimal signature verification tool (udeb)
 scdaemon   - GNU privacy guard - smart card support
Closes: 1124221
Changes:
 gnupg2 (2.2.40-1.1+deb12u2) bookworm; urgency=high
 .
   * Address four issues from https://gpg.fail, including:
     + Fix CVE-2025-68973 (Closes: #1124221)
     + Avoid potential downgrade to SHA1 in 3rd party key signatures.
     + Error out on unverified output for non-detached signatures.
     + Do not use a default when asking for another output filename.
   * d/control: Point Vcs-Git to the correct branch
Checksums-Sha1:
 5b6c4c36e520099b6390d4044d2f40cbad561a53 885484 dirmngr-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 168f4d6690bf8999645c27bbbebd9256c82a2cc6 819464 dirmngr_2.2.40-1.1+deb12u2_i386.deb
 3f260c25559f8408b0ca6cb408ef32619da74170 1451204 gnupg-utils-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 78a7afc0d40d90f30610636b42e6742604aec3d3 974792 gnupg-utils_2.2.40-1.1+deb12u2_i386.deb
 dda3650892decfeb3de2b570f70fd6d602762900 16839 gnupg2_2.2.40-1.1+deb12u2_i386-buildd.buildinfo
 b4758d3ccfe120c109af0bc89c4bda00f106670d 879832 gpg-agent-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 8e9d23bb875ae06c218948f5af18943bd3ba3095 715544 gpg-agent_2.2.40-1.1+deb12u2_i386.deb
 cada1a7da616370853777c644869f4b407f620d1 1135064 gpg-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 9ebad5f9580411938c22b316a763ee0b5e1b9410 272500 gpg-wks-client-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 174aa3360ec0e128b09fc16723d13f4a782147f8 551260 gpg-wks-client_2.2.40-1.1+deb12u2_i386.deb
 2fc16e54a1f4fdde86dd1651698fef913109d595 250056 gpg-wks-server-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 6ff0ea0243225dca9678f0580531a5873a545049 541140 gpg-wks-server_2.2.40-1.1+deb12u2_i386.deb
 dde5532bd6ac02b1e948c7e40376ea70448f39a3 991564 gpg_2.2.40-1.1+deb12u2_i386.deb
 43e7b5e6679b6eca57810864196c74441f8fd6ad 345136 gpgconf-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 2cbf05806ba61473246a3877068bc2d5676147e1 572396 gpgconf_2.2.40-1.1+deb12u2_i386.deb
 cd1db54799f65daee3258113185e1c615b41244c 572716 gpgsm-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 62056416779d991874a2b64502a9fdc6d0510ad2 690908 gpgsm_2.2.40-1.1+deb12u2_i386.deb
 a7ba9e0d16fac06c951560fc3f2c25ed242b407e 558264 gpgv-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 54ddf0382bb321f77536f92ca4304b896073d44e 611988 gpgv-static-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 ac59d54da218c17eae10beec67bd591a8e2b8cd2 1521988 gpgv-static_2.2.40-1.1+deb12u2_i386.deb
 99e3e2b6703f043919517b8d31134766e930b607 220712 gpgv-udeb_2.2.40-1.1+deb12u2_i386.udeb
 76bf899b3083edbcc6f95ab128b721eb73584538 669628 gpgv_2.2.40-1.1+deb12u2_i386.deb
 73d65c90aa59c01ea91ccba6f618828ff8b2927c 502668 scdaemon-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 910f1d68132918b7e0dc3c8f8ecc2e0eae13ee5a 664596 scdaemon_2.2.40-1.1+deb12u2_i386.deb
Checksums-Sha256:
 0d8d1ab161580316375bac2539e086c354a1f7f6e2f87654bf72b869484d5142 885484 dirmngr-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 8b09cef9cff6d5d1c9f4e07f2c22868e79d07029e3cbf7e7ef90e4151f73489d 819464 dirmngr_2.2.40-1.1+deb12u2_i386.deb
 a0c4e72b8c59dba44aecb9e3e6532e82c81ab7c8fedf0b5f9a28f10d1055044b 1451204 gnupg-utils-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 fb5daa05561f56f6f5ab1444a00f0d4938f0479822a0e98c9b3ec015746982b7 974792 gnupg-utils_2.2.40-1.1+deb12u2_i386.deb
 2ad1e8427bb669bb1e4de5611073c6c15e2be1450f75678b21f3975a724d9f04 16839 gnupg2_2.2.40-1.1+deb12u2_i386-buildd.buildinfo
 6efe8d48bd02ae914da29ccc802131cfcafab77b8a84705216068a5cf4e14f29 879832 gpg-agent-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 2a25415d96e6300e08eeb8cd084f2731f01637610a4ae96fb83c23aeba7cde52 715544 gpg-agent_2.2.40-1.1+deb12u2_i386.deb
 9533db95d05abe379500a5f466b084ce1c8f39ad0a75e0a93d54158a522b7910 1135064 gpg-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 4300075d16caea7241cff9b8ecceb668984708d43103b73dca837640ede5ec10 272500 gpg-wks-client-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 566de266646390d2ef03b40e6b56ac4dd85807c1aeb01bccfa82d5d05d213bdb 551260 gpg-wks-client_2.2.40-1.1+deb12u2_i386.deb
 eb01f2c036202064525cbf363253f7422fdc66e4065a7bc327ea30f673cab4d9 250056 gpg-wks-server-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 a8fad73de90cc33b97f13fe04b6c2b3a53d098194e822d5cc1070996491a7f78 541140 gpg-wks-server_2.2.40-1.1+deb12u2_i386.deb
 32f3946324e83dd54eab6511c7342a808d810db63a698dca1ecdce1529b3e017 991564 gpg_2.2.40-1.1+deb12u2_i386.deb
 895ad1f31f2b059550a8a89ade997068083cfc13ebf7341fcd50f2ebed843dc7 345136 gpgconf-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 ba1b38157e3b6517736eabc235e81c89d0e85c225cc099c4d178bcce4770d52b 572396 gpgconf_2.2.40-1.1+deb12u2_i386.deb
 6095e15e3f3228d91ede58604b91b486f3846fb1b879c8b1482159d7ec226b47 572716 gpgsm-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 5d7404a98ad4294a69ec12f35abb7af5b075a2c0f30fde70c3e6257d0d9d4ec0 690908 gpgsm_2.2.40-1.1+deb12u2_i386.deb
 ad72b1f1931b6809e9232e4751236bb8cd674455c8c2865da9eeb31b1c478fa8 558264 gpgv-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 5e1f8110572da3e706ed72d90227903eb086452906eed65584ff8b3db3c7747f 611988 gpgv-static-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 619a26e8e4114b54c3ac240560543f29651a18f7ceb1604602beb2da0a862924 1521988 gpgv-static_2.2.40-1.1+deb12u2_i386.deb
 a974f5492b23793035dae7953a5ca0e3c26409a93beb4cf629a43cc6bc8c0279 220712 gpgv-udeb_2.2.40-1.1+deb12u2_i386.udeb
 a807ae5a1f8bcb64dcd667d1774c2eed863de0a01bf662e65e4a8f5174968c28 669628 gpgv_2.2.40-1.1+deb12u2_i386.deb
 e89a679bc0fbcfabee3eb9fd75f38720b0022b9a8f13bee264982a3f82641a9e 502668 scdaemon-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 6a17dc624a5cece0162eb974ce2e39fb91dbe1165a32c89277ef424be579cf0f 664596 scdaemon_2.2.40-1.1+deb12u2_i386.deb
Files:
 7541fd38f05fab8603bba4c63b5f1563 885484 debug optional dirmngr-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 187693a99fc5171444e2a12b1f1ac9ab 819464 utils optional dirmngr_2.2.40-1.1+deb12u2_i386.deb
 2c97fdc9b9acce08bb791382cf93692a 1451204 debug optional gnupg-utils-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 1d00f4a780a586398e3f08a76be579e8 974792 utils optional gnupg-utils_2.2.40-1.1+deb12u2_i386.deb
 a68116e1c487673b72aedb02fc0a3422 16839 utils optional gnupg2_2.2.40-1.1+deb12u2_i386-buildd.buildinfo
 49b5ce912a1f90f4190f561a4a3d008c 879832 debug optional gpg-agent-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 bc82a1e9ccc3ae0292a69bef1e87ab2e 715544 utils optional gpg-agent_2.2.40-1.1+deb12u2_i386.deb
 c4401a2fee45599a2868f5e90d2a1c2a 1135064 debug optional gpg-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 3a12cd634a2147a8b384ccb745ee9775 272500 debug optional gpg-wks-client-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 18e5443e8fd6280e48616c38bfb760df 551260 utils optional gpg-wks-client_2.2.40-1.1+deb12u2_i386.deb
 690664b64d4ecb9e65831a2b4b5dd5bf 250056 debug optional gpg-wks-server-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 6c042962791b826f3bb13b791341205a 541140 utils optional gpg-wks-server_2.2.40-1.1+deb12u2_i386.deb
 07990acd3783d148ea4cfddb1cc8dcc0 991564 utils optional gpg_2.2.40-1.1+deb12u2_i386.deb
 4ec704c01edb6fcda89cecd5f587cf66 345136 debug optional gpgconf-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 133df46d285ccf5c322f4730919ddd29 572396 utils optional gpgconf_2.2.40-1.1+deb12u2_i386.deb
 094a42025eeafb93b372811390e5b41d 572716 debug optional gpgsm-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 4b1793ee5bd03e2a445ddaf20d7d6b7d 690908 utils optional gpgsm_2.2.40-1.1+deb12u2_i386.deb
 0413c645ec74d9c7376d022e2e3f29c8 558264 debug optional gpgv-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 144fb22e940bb98444aecf6195d7d706 611988 debug optional gpgv-static-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 b792436136305e8a172881c1ca5d5275 1521988 utils optional gpgv-static_2.2.40-1.1+deb12u2_i386.deb
 d270d1766605ca6db32d7b859feef250 220712 debian-installer optional gpgv-udeb_2.2.40-1.1+deb12u2_i386.udeb
 9a7600d69b92ba8979a2e5724ac981a0 669628 utils important gpgv_2.2.40-1.1+deb12u2_i386.deb
 d91d4e5dd867c0c1a56467ce305ef21d 502668 debug optional scdaemon-dbgsym_2.2.40-1.1+deb12u2_i386.deb
 9642db99b9233c5f5e8208ae92437976 664596 utils optional scdaemon_2.2.40-1.1+deb12u2_i386.deb

-----BEGIN PGP SIGNATURE-----
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=pqhL
-----END PGP SIGNATURE-----