gnupg2 (2.1.11-6ubuntu2.1) xenial-security; urgency=medium

  * SECURITY UPDATE: missing sanitization of verbose output
    - debian/patches/CVE-2018-12020.patch: Sanitize diagnostic with
      the original file name.
    - CVE-2018-12020
  * backport patch to handle the tofu tests expiring in 2016
    - d/p/0006-tests-openpgp-Fake-the-system-time-for-the-tofu-test.patch

 -- Steve Beattie <sbeattie@ubuntu.com>  Thu, 14 Jun 2018 10:41:36 -0700

gnupg2 (2.1.11-6ubuntu2) xenial; urgency=medium

  * Fix upstart user-session integration with new pinentry:
  - restart gpg-agent, once dbus is started, such that agent has DBUS
    session environemnt set and can connect to the pinentry-gnome3 Closes:
    #790316 Closes: #795368 LP: #1566928
  - use gpgconf to launch/kill gpg-agent and to check settings

 -- Dimitri John Ledkov <xnox@ubuntu.com>  Fri, 08 Apr 2016 08:55:10 +0100

gnupg2 (2.1.11-6ubuntu1) xenial; urgency=medium

  * Adds support for --pinentry= argument for gpgme1.0 (LP: #1564234)
  * Merge with debian, remaining changes:
    - Add udev rules to give gpg access to some smartcard readers;
      Debian #543217.
    - debian/gnupg2.udev: udev rules to set ACLs on SCM smartcard readers.
    - Add upstart user job for gpg-agent.
  * Dropped no longer applicable changes in merge:
    - Drop sh prefix from openpgp test environment as it leads to exec
      invocations of sh /bin/bash leading to syntax errors from sh.  Fixes
      FTBFS detected in Ubuntu saucy archive rebuild.
    - debian/control: drop dirmngr to Suggests as it is in universe.
    - gcc5-fix.patch: add upstream fix for an optimization issue when
      compiling with gcc 5.

 -- Mario Limonciello <mario_limonciello@dell.com>  Wed, 30 Mar 2016 23:20:09 -0500

gnupg2 (2.1.11-6) unstable; urgency=medium

  * avoid FTBFS with patch from upstream (Closes: #814842)
  * bumped standards-version to 3.9.7 (no changes needed)

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Tue, 01 Mar 2016 09:36:41 +0100

gnupg2 (2.1.11-5) unstable; urgency=medium

  * taking over gpgv-udeb from gnupg 1.4 packaging
  * debian/control: use secure transport for Vcs-* and Homepage

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Thu, 04 Feb 2016 17:17:47 -0500

gnupg2 (2.1.11-4) unstable; urgency=medium

  * disable gpgtar, since it is causing unpredictable testsuite failures
    and we don't ship it anyway.

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Wed, 03 Feb 2016 11:57:57 -0500

gnupg2 (2.1.11-3) unstable; urgency=medium

  * trying again to get a proper dump of the gpgtar.test.log. sigh.

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Thu, 28 Jan 2016 08:34:22 -0500

gnupg2 (2.1.11-2) unstable; urgency=medium

  * added temporary hook to view failing gpgtar test output on build
    daemons since i can't replicate the failures on my own build systems.

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Thu, 28 Jan 2016 00:53:29 -0500

gnupg2 (2.1.11-1) unstable; urgency=medium

  * new upstream release
    - drops buggy attempt to detect duplicate keys (Closes: #807819)
  * removed -dbg package, since we have automatic -dbgsym packages now
  * removed undocumented gpgkey2ssh; use gpg --export-ssh-key instead

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Mon, 25 Jan 2016 15:29:25 -0500

gnupg2 (2.1.10-3) unstable; urgency=medium

  * avoid infinite loop when doing --gen-revoke by fingerprint

 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net>  Sat, 12 Dec 2015 16:53:40 -0500

# For older changelog entries, run 'apt-get changelog dirmngr'