GnuPG 2.1.3 released

先週末の話なんだけど， GnuPG 2.1.3 （modern version）がリリースされている。

[Announce] GnuPG 2.1.3 released

C:>gpg --version gpg (GnuPG) 2.1.3 libgcrypt 1.6.3 Copyright (C) 2015 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law.

Home: ******** Supported algorithms: Pubkey: RSA, ELG, DSA, ECDH, ECDSA, EDDSA Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH, CAMELLIA128, CAMELLIA192, CAMELLIA256 Hash: SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224 Compression: Uncompressed, ZIP, ZLIB, BZIP2

変更点は以下のとおりで，セキュリティ絡みの修正はないはず。（そういや libgcrypt 1.6.2 以前には Side Channel Attack の脆弱性があるので 1.6.3 にアップデートすること）

gpg: LDAP keyservers are now supported by 2.1.
gpg: New option --with-icao-spelling.
gpg: New option --print-pka-records. Changed the PKA method to use CERT records and hashed names.
gpg: New command --list-gcrypt-config. New parameter "curve" for --list-config.
gpg: Print a NEWSIG status line like gpgsm always did.
gpg: Print MPI values with --list-packets and --verbose.
gpg: Write correct MPI lengths with ECC keys.
gpg: Skip legacy PGP-2 keys while searching.
gpg: Improved searching for mail addresses when using a keybox.
gpgsm: Changed default algos to AES-128 and SHA-256.
gpgtar: Fixed extracting files with sizes of a multiple of 512.
dirmngr: Fixed SNI handling for hkps pools.
dirmngr: extra-certs and trusted-certs are now always loaded from the sysconfig dir instead of the homedir.
Fixed possible problems due to compiler optimization, two minor regressions, and other bugs.