[Bug 1421640] Re: "gpg2 --refresh-keys" results in "rejected by import filter"

Launchpad Bug Tracker 1421640 at bugs.launchpad.net
Wed Apr 1 13:11:53 UTC 2015 

This bug was fixed in the package gnupg2 - 2.0.24-1ubuntu2.2

---------------
gnupg2 (2.0.24-1ubuntu2.2) utopic-security; urgency=medium

  * Fix screening responses from keyservers (LP: #1421640)
    - d/p/0002-Make-screening-of-keyserver-result-work-with-multi-k.patch
    - d/p/0003-Add-kbnode_t-for-easier-backporting.patch
    - d/p/0004-gpg-Fix-regression-due-to-the-keyserver-import-filte.patch
  * Fix large key size regression from CVE-2014-5270 changes (LP: #1371766)
    - d/p/Add-build-and-runtime-support-for-larger-RSA-key.patch
    - debian/rules: build with --enable-large-secmem
  * SECURITY UPDATE: invalid memory read via invalid keyring
    - debian/patches/CVE-2015-1606.patch: skip all packets not allowed in
      a keyring in g10/keyring.c.
    - CVE-2015-1606
  * SECURITY UPDATE: memcpy with overlapping ranges
    - debian/patches/CVE-2015-1607.patch: use inline functions to convert
      buffer data to scalars in common/iobuf.c, g10/build-packet.c,
      g10/getkey.c, g10/keyid.c, g10/main.h, g10/misc.c,
      g10/parse-packet.c, g10/tdbio.c, g10/trustdb.c, include/host2net.h,
      kbx/keybox-dump.c, kbx/keybox-openpgp.c, kbx/keybox-search.c,
      kbx/keybox-update.c, scd/apdu.c, scd/app-openpgp.c,
      scd/ccid-driver.c, scd/pcsc-wrapper.c, tools/ccidmon.c.
    - CVE-2015-1607
 -- Marc Deslauriers <marc.deslauriers at ubuntu.com>   Fri, 27 Mar 2015 08:16:53 -0400

** Changed in: gnupg2 (Ubuntu Utopic)
       Status: In Progress => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-5270

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-1606

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-1607

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to gnupg2 in Ubuntu.
https://bugs.launchpad.net/bugs/1421640

Title:
  "gpg2 --refresh-keys" results in "rejected by import filter"

Status in gnupg2 package in Ubuntu:
  Fix Released
Status in gnupg2 source package in Utopic:
  Fix Released
Status in gnupg2 source package in Vivid:
  Fix Released

Bug description:
  I am using Ubuntu 14.10 with gpg (GnuPG) 2.0.24.

  There seems to be a bug when I want to refresh the keys.

  :~$ gpg2 --refresh-keys 
  gpg: refreshing 33 keys from hkp://keys.gnupg.net
  gpg: key 43A2BCD5: rejected by import filter
  gpg: key A788C4D6: rejected by import filter
  gpg: key EE728A71: rejected by import filter
  gpg: key 04089964: rejected by import filter
  gpg: key 6224791A: rejected by import filter
  gpg: key F1AE330F: rejected by import filter
  gpg: key 407D90F7: rejected by import filter
  ....

  Since this problem with 2.0.24 seems to be known
  (http://lists.freebsd.org/pipermail/freebsd-
  ports/2014-June/093621.html) I think it might be a good idea to update
  to a more recent version.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1421640/+subscriptions

More information about the foundations-bugs mailing list