Botan

ayankov/Botan

SHA256

Fork 0

forked from pool/Botan

Commit Graph

Author	SHA256	Message	Date
Philipp Thomas	775d045da9	- Update to 1.10.14 * Fix integer overflow during BER decoding, found by Falko Strenzke. This bug is not thought to be directly exploitable but upgrading ASAP is advised. (CVE-2016-9132) * Fix two cases where (in error situations) an exception would be thrown from a destructor, causing a call to std::terminate. * When RC4 is disabled in the build, also prevent it from being included in the OpenSSL provider. (GH #638) * Use constant time modular inverse algorithm to avoid possible side channel attack against ECDSA (CVE-2016-2849) * Use constant time PKCS #1 unpadding to avoid possible side channel attack against RSA decryption (CVE-2015-7827) * Avoid a compilation problem in OpenSSL engine when ECDSA was disabled. Gentoo bug 542010 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=62	2016-12-28 12:34:03 +00:00
Ismail Dönmez	73ce913dff	Accepting request 159650 from home:cgiboudeaux:branches:devel:libraries:c_c++ Update to 1.10.5 OBS-URL: https://build.opensuse.org/request/show/159650 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=39	2013-03-18 14:19:03 +00:00
Ismail Dönmez	f94b14708a	Accepting request 131010 from openSUSE:Factory:ARM - don't fiddle with march settings, we want the distro defaults (fixes build on ARM) OBS-URL: https://build.opensuse.org/request/show/131010 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=33	2012-08-16 11:36:27 +00:00

Author

SHA256

Message

Date

Philipp Thomas

775d045da9

- Update to 1.10.14

* Fix integer overflow during BER decoding, found by Falko Strenzke.
      This bug is not thought to be directly exploitable but upgrading ASAP
      is advised. (CVE-2016-9132)
    * Fix two cases where (in error situations) an exception would be
      thrown from a destructor, causing a call to std::terminate.
    * When RC4 is disabled in the build, also prevent it from being
      included in the OpenSSL provider. (GH #638)
  * Use constant time modular inverse algorithm to avoid possible side 
    channel attack against ECDSA (CVE-2016-2849)
  * Use constant time PKCS #1 unpadding to avoid possible side channel
    attack against RSA decryption (CVE-2015-7827)
  * Avoid a compilation problem in OpenSSL engine when ECDSA was
    disabled. Gentoo bug 542010

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=62

2016-12-28 12:34:03 +00:00

Ismail Dönmez

73ce913dff

Accepting request 159650 from home:cgiboudeaux:branches:devel:libraries:c_c++

Update to 1.10.5

OBS-URL: https://build.opensuse.org/request/show/159650
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=39

2013-03-18 14:19:03 +00:00

Ismail Dönmez

f94b14708a

Accepting request 131010 from openSUSE:Factory:ARM

- don't fiddle with march settings, we want the distro defaults
  (fixes build on ARM)

OBS-URL: https://build.opensuse.org/request/show/131010
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=33

2012-08-16 11:36:27 +00:00

3 Commits