Hi everyone, DSA-2040-1 [1] has just been issued, but its corresponding tracker page [2] does not look right to me (it is almost empty). I also seem to be unable to correctly verify the GPG signature for DSA-2040-1 [1]: I get a "BAD signature" response from inside my MUA (Sylpheed) and a direct gpg invocation on the message leads to: $ gpg --verify $MESSAGE gpg: invalid dash escaped line: -\n gpg: invalid dash escaped line: -\n gpg: unexpected armor: ----------\n gpg: unknown armor header: For apt-get: deb http://security.debian.org/ stable/updates main gpg: unknown armor header: For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/upda= gpg: invalid armor header: tes/main\n I don't know whether the two problems are related... Could you please fix the tracker and tell me if you are able to correctly verify the signature? [1] http://lists.debian.org/debian-security-announce/2010/msg00081.html [2] http://security-tracker.debian.org/tracker/DSA-2040-1 -- http://www.inventati.org/frx/progs/scripts/pdebuild-hooks.html Need some pdebuild hook scripts? ..................................................... Francesco Poli . GnuPG key fpr == C979 F34B 27CE 5CD8 DC12 31B5 78F4 279B DD6D FCF4
Attachment:
pgpcp51jqQPvV.pgp
Description: PGP signature