This relates to the security bug tracked in bug 541564. Arches, please stabilize: =dev-libs/libgcrypt-1.5.5 Stable targets: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 Removal of 1.5 branch before EOL later this year is tracked in bug 567382, but while it is in support period and apps depend explicitly on it blocking upgrade path to 1.6 I suggest stabilization on all arches. commit 7483dce1f1ea850bcb739d19a05cede84b9b2a33 Author: Kristian Fiskerstrand <k_f@gentoo.org> Date: Thu Feb 25 18:46:27 2016 +0100 dev-libs/libgcrypt: Version bump of 0/11 to 1.5.5 This is a security fix release for * Mitigate chosen cipher text attacks on ECDH with Weierstrass curves. [CVE-2015-7511] (already backported to 1.5.4-r2) * Use ciphertext blinding for Elgamal decryption. [CVE-2014-3591] the libgcrypt 1.5 branch is EOL for security fixes YE2016 Gentoo-Bug: 541564 Package-Manager: portage-2.2.27
amd64 stable
x86 stable
ppc stable
ppc64 stable
sparc stable
ia64 stable
arm stable
Stable on alpha.
Stable for HPPA.