head	1.1;
access;
symbols
	RELEASE_8_3_0:1.1
	RELEASE_9_0_0:1.1
	RELEASE_7_4_0:1.1
	RELEASE_8_2_0:1.1
	RELEASE_6_EOL:1.1
	RELEASE_8_1_0:1.1
	RELEASE_7_3_0:1.1
	RELEASE_8_0_0:1.1
	RELEASE_7_2_0:1.1
	RELEASE_7_1_0:1.1
	RELEASE_6_4_0:1.1
	RELEASE_5_EOL:1.1
	RELEASE_7_0_0:1.1
	RELEASE_6_3_0:1.1
	PRE_XORG_7:1.1;
locks; strict;
comment	@# @;


1.1
date	2007.04.23.14.01.17;	author tobez;	state Exp;
branches;
next	;


desc
@@


1.1
log
@Resurrect p5-Crypt-OpenPGP, now with a patch for CVE-2005-0366.

Seems OK:	simon, lth
@
text
@--- lib/Crypt/OpenPGP/Ciphertext.pm.orig	Tue Apr 10 15:51:46 2007
+++ lib/Crypt/OpenPGP/Ciphertext.pm	Tue Apr 10 15:52:03 2007
@@@@ -87,8 +87,8 @@@@ sub decrypt {
     my $padlen = $cipher->blocksize + 2;
     my $pt = $enc->{prefix} =
         $cipher->decrypt(substr $enc->{ciphertext}, 0, $padlen);
-    return $enc->error("Bad checksum")
-        unless substr($pt, -4, 2) eq substr($pt, -2, 2);
+    # return $enc->error("Bad checksum")
+    #     unless substr($pt, -4, 2) eq substr($pt, -2, 2);
     $cipher->sync unless $enc->{is_mdc};
     $pt = $cipher->decrypt(substr $enc->{ciphertext}, $padlen);
     if ($enc->{is_mdc}) {
@
