Release Notes: 2048 bit RSA keys are now generated by default. The default hash algorithm preferences have changed to prefer SHA-256 over SHA-1. 2048 bit DSA keys are now generated to use a 256 bit hash algorithm. Support for v2 OpenPGP cards was added. Support for the Camellia cipher (RFC-5581) was implemented. Support for HKP keyservers over SSL ("HKPS") was added. The algorithm for computing the SIG_ID status was changed to match the one used in version 2.0.10. File locking was improved. A memory leak which made imports of many keys very slow was fixed. Many smaller bugs were fixed.
Release Notes: GPGSM now always lists ephemeral certificates if specified by fingerprint or keygrip. GPGSM now also returns information about smartcards. It is now made sure not to leak file descriptors if running gpg-agent with a command. The order of the confirmation questions for root certificates was changed, and negative answers are stored in trustlist.txt. Better synchronization of concurrent smartcard sessions was implemented. Support for 2048 bit OpenPGP cards and for Telesec Netkey 3 cards was added. A potential Mac OS X system freeze is now avoided.
Release Notes: Many enhancements and fixes were made.
Release Notes: A possible memory corruption while importing OpenPGP keys, as reported in CVE-2008-1530, was fixed. The Admin PIN for OpenPGP cards may now be entered with the pinpad. Certificate chain construction was improved. The PKITS framework was extended. A bug in the ambigious name detection was fixed. Further minor bugfixes were made.
Release Notes: A possible memory corruption while importing OpenPGP keys was fixed. AES encryption performance was improved by more than 20% on x86, and decryption is also slightly faster.
Release Notes: The gpg-connect-agent was enhanced with a small scripting language. A new option "--list-config" was implemented for gpgconf. Creating DSA2 keys is now possible. gpgsm can now be allowed to verify broken signatures. A rare bug in decryption using the OpenPGP card and a crash in gpgconf were fixed. Several other minor enhancements and bugfixes were made. The license was changed to the GPLv3.
Release Notes: The detection of keyrings specified multiple times was improved. Changes were made to cope better with broken keyservers. The "--openpgp" mode was updated to match the final OpenPGP standard RFC-4880. The older behavior is supported with "--rfc2440". A rare bug in decryption using the OpenPGP card was fixed. Several other minor enhancements and bugfixes were made. The license was changed to the GPLv3.
Release Notes: Several modules now handle "--default-key". New commands "--gen-key" and "--validation-model" were added. Bugs in card key generation were fixed. An encryption problem with duplicate certificates in the keybox was solved. Key generation now reveals less information about the host. Logging support in libgcrypt was improved. The license was changed to GPLv3.
Release Notes: A serious and exploitable bug in processing encrypted packages, as reported in CVE-2006-6235, was fixed. A vulnerability when using GnuPG in streaming mode, which made it possible to insert additional text before or after a signed message if GnuPG was not used correctly, was fixed. A PIN pad can now also be used for the signing key. The PIN pad of the Cherry XX44 keyboard is now supported.
Release Notes: A vulnerability when using GnuPG in streaming mode, which made it possible to insert additional text before or after a signed message if GnuPG was not used correctly, was fixed.