[pkg-gnupg-maint] Bug#1105820: Gnupg-in-debian considers comment packets invalid
Sune Stolborg Vuorela
sune at debian.org
Thu May 15 11:19:32 BST 2025
Package: gnupg
Version: 2.4.6-7
Severity: important
Hi
Since
https://salsa.debian.org/debian/gnupg2/-/blob/debian/unstable/debian/patches/
freepg/0019-Disallow-compressed-signatures-and-certificates.patch?
ref_type=heads#L188
GnuPG-in-debian has stopped accepting comment packets in detached signatures.
That should be fully valid and there is no good reason to consider them bad.
It is at least used by poppler to pad signature fields when adding a detached
gpg signature in a pdf document, and these can't be re-validated on a Debian
system.
This change also breaks the part of Poppler's CI system that is based off
randomly regenerated Debian containers. (and they were very recent
regenerated)
Please quickly fix this also for the trixie release.
/Sune
--
I didn’t stop pretending when I became an adult, it’s just that when I was a
kid I was pretending that I fit into the rules and structures of this world.
And now that I’m an adult, I pretend that those rules and structures exist.
- zefrank
More information about the pkg-gnupg-maint
mailing list