Thursday, June 29, 2006

GnuPG 1.4.4 released (security bug fix)

What's New

* User IDs are now capped at 2048 bytes. This avoids a memory
allocation attack (see CVE-2006-3082).

* Added support for the SHA-224 hash. Like the SHA-384 hash, it
is mainly useful when DSS (the US Digital Signature Standard)
compatibility is desired.

* Added support for the latest update to DSA keys and signatures.
This allows for larger keys than 1024 bits and hashes other than
SHA-1 and RIPEMD/160. Note that not all OpenPGP implementations
can handle these new keys and signatures yet. See
"--enable-dsa2" in the manual for more information.