-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2020-28cc1451e0 2020-07-20 00:52:31.278063 --------------------------------------------------------------------------------

Name : python-gnupg Product : Fedora EPEL 7 Version : 0.4.6 Release : 2.el7 URL : https://gnupg.readthedocs.io/ Summary : A wrapper for the Gnu Privacy Guard (GPG or GnuPG) Description : GnuPG bindings for python. This uses the gpg command.

-------------------------------------------------------------------------------- Update Information:

New python-gnupg version ---- Resolves rhbz#1670364 Fixes CVE-2019-6690 -------------------------------------------------------------------------------- ChangeLog:

* Sat Jul 4 2020 Fabio Alessandro Locati me@fale.io - 0.4.6-2 - Add back the python2 package * Sat Jul 4 2020 Fabio Alessandro Locati me@fale.io - 0.4.6-1 - Update to 0.4.6 * Tue May 26 2020 Miro Hron��ok mhroncok@redhat.com - 0.4.4-7 - Rebuilt for Python 3.9 * Thu Jan 30 2020 Fedora Release Engineering releng@fedoraproject.org - 0.4.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Thu Oct 3 2019 Miro Hron��ok mhroncok@redhat.com - 0.4.4-5 - Rebuilt for Python 3.8.0rc1 (#1748018) * Thu Aug 22 2019 Miro Hron��ok mhroncok@redhat.com - 0.4.4-4 - Subpackage python2-gnupg has been removed See https://fedoraproject.org/wiki/Changes/Mass_Python_2_Package_Removal * Mon Aug 19 2019 Miro Hron��ok mhroncok@redhat.com - 0.4.4-3 - Rebuilt for Python 3.8 * Fri Jul 26 2019 Fedora Release Engineering releng@fedoraproject.org - 0.4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Fri Apr 26 2019 Paul Wouters pwouters@redhat.com - 0.4.4-1 - Resolves rhbz#1670364 Fixes CVE-2019-6690 * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 0.4.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1670364 - CVE-2019-6690 python-gnupg: improper input validation in gnupg.GPG.encrypt() and gnupg.GPG.decrypt() https://bugzilla.redhat.com/show_bug.cgi?id=1670364 --------------------------------------------------------------------------------

This update can be installed with the "yum" update programs. Use su -c 'yum update python-gnupg' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html

All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------