[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
The following reply was made to PR pkg/54048; it has been noted by GNATS.
Subject: Re: pkg/54048
Date: Mon, 11 Mar 2019 15:11:59 -0400
> so I suspect something has added to the original spec
That may have been the case, but if so I do not know when / where.
> - which package, and how was it signed?
I am not sure I understand the question. As far as I can tell the signature
verification fails when checking the vulnerability list file, not when
installing a package per-se.
Following is the list of packages I assume might be related to this issue:
pkg_install-20180425 Package management and administration tools for pkgsrc
pkgin-0.11.6nb1 Apt / yum like tool for managing pkgsrc binary packages
libgpg-error-1.33 Definitions of common error values for all GnuPG components
gnupg-1.4.23nb2 GNU Privacy Guard, public-Key encryption and digital signatures
# echo $PKG_PATH
# which pkg_admin
Apologies if this is not what you asked.
For completeness sake, the output of
ktruss -id pkg_admin fetch-pkg-vulnerabilities -s 2>&1 can be found here:
Main Index |
Thread Index |