libgcrypt: security bump to version 1.6.3

Fixes: CVE-2014-3591 - Use ciphertext blinding for Elgamal decryption CVE-2015-0837 - Fixed data-dependent timing variations in modular exponentiation. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
author: Gustavo Zacarias <gustavo@zacarias.com.ar> 2015-02-28 08:09:12 -0300
committer: Peter Korsgaard <peter@korsgaard.com> 2015-02-28 13:03:54 +0100
commit: b3db3aba6e442da91e5b55ee97ac3c789849051c (patch)
tree: 19e351d6f77491faa3a03a502a9ba93b61d945b1 /package/libgcrypt
parent: 67cebbdf5f349cc176037fa15c281a9462dae591 (diff)
2 files changed, 3 insertions, 3 deletions
diff --git a/package/libgcrypt/libgcrypt.hash b/package/libgcrypt/libgcrypt.hash
index 2ce7a67c9..9cad1c49b 100644
--- a/package/libgcrypt/libgcrypt.hash
+++ b/package/libgcrypt/libgcrypt.hash
@@ -1,2 +1,2 @@
-# From http://lists.gnupg.org/pipermail/gnupg-announce/2014q3/000355.html
-sha1	cc31aca87e4a3769cb86884a3f5982b2cc8eb7ec	libgcrypt-1.6.2.tar.bz2
+# From http://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.html
+sha1	9456e7b64db9df8360a1407a38c8c958da80bbf1	libgcrypt-1.6.3.tar.bz2
diff --git a/package/libgcrypt/libgcrypt.mk b/package/libgcrypt/libgcrypt.mk
index 4d64da880..e2a4b392e 100644
--- a/package/libgcrypt/libgcrypt.mk
+++ b/package/libgcrypt/libgcrypt.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBGCRYPT_VERSION = 1.6.2
+LIBGCRYPT_VERSION = 1.6.3
 LIBGCRYPT_SOURCE = libgcrypt-$(LIBGCRYPT_VERSION).tar.bz2
 LIBGCRYPT_LICENSE = LGPLv2.1+
 LIBGCRYPT_LICENSE_FILES = COPYING.LIB
author	Gustavo Zacarias <gustavo@zacarias.com.ar>	2015-02-28 08:09:12 -0300
committer	Peter Korsgaard <peter@korsgaard.com>	2015-02-28 13:03:54 +0100
commit	b3db3aba6e442da91e5b55ee97ac3c789849051c (patch)
tree	19e351d6f77491faa3a03a502a9ba93b61d945b1 /package/libgcrypt
parent	67cebbdf5f349cc176037fa15c281a9462dae591 (diff)