gpg: The GNU Privacy Guard: Encrypts, Decrypts, and Signs Data
----------------------------------------------------------------------
File: gpg-1.4.5-24.4.ppc.rpm
Patchrpm: gpg-1.4.5-24.4.ppc.patch.rpm
Version: 1.4.5-24.4
Size: 1541 kB
Patchsize: 701 kB
Date: Fri 23 Mar 2007 18:58:29 CET
Source: gpg-1.4.5-24.4.src.rpm
Security: Yes
----------------------------------------------------------------------
Description: When printing a text stream with a GPG signature it was possible
for an attacker to create a stream with "unsigned text, signed text"
where both unsigned and signed text would be shown without distinction
which one was signed and which part wasn't.

This is tracked by the Mitre CVE ID CVE-2007-1263.

The update introduces a new option --allow-multiple-messages to
print out such messages in the future, by default it only prints and
handles the first one.