ayankov/Botan
SHA256
1
0
Fork 0
forked from pool/Botan
Code Pull Requests Activity
34 Commits 2 Branches 0 Tags 28 MiB
Public Key 100%
ee861a620e
Go to file
Michal Vyskocil ee861a620e Accepting request 322627 from home:netsroth:branches:devel:libraries:c_c++ 
- bump SONAME to libbotan-1_10-1
- Update to 1.10.10
  * SECURITY: The BER decoder would crash due to reading from offset 0
    of an empty vector if it encountered a BIT STRING which did not
    contain any data at all. As the type requires a 1 byte field this
    is not valid BER but could occur in malformed data. Found with
    afl. CVE-2015-5726
  * SECURITY: The BER decoder would allocate a fairly arbitrary amount
    of memory in a length field, even if there was no chance the read
    request would succeed. This might cause the process to run out of
    memory or invoke the OOM killer. Found with afl. CVE-2015-5727
  * Due to an ABI incompatible (though not API incompatible) change in
    this release, the version number of the shared object has been
    increased.
  * The default TLS policy no longer allows RC4.
  * Fix a signed integer overflow in Blue Midnight Wish that may cause
    incorrect computations or undefined behavior.
- Update to 1.10.9
  * Fixed EAX tag verification to run in constant time
  * The default TLS policy now disables SSLv3.
  * A crash could occur when reading from a blocking random device if
    the device initially indicated that entropy was available but a
    concurrent process drained the entropy pool before the read was
    initiated.
  * Fix decoding indefinite length BER constructs that contain a
    context sensitive tag of zero. Github pull 26 from Janusz Chorko.
  * The botan-config script previously tried to guess its prefix from
    the location of the binary. However this was error prone, and now
    the script assumes the final installation prefix matches the value
    set during the build. Github issue 29.

OBS-URL: https://build.opensuse.org/request/show/322627
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=51
2015-08-14 05:57:04 +00:00
.gitattributes OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/Botan?expand=0&rev=1 2008-04-08 20:30:09 +00:00
.gitignore OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/Botan?expand=0&rev=1 2008-04-08 20:30:09 +00:00
aarch64-support.patch - aarch64-support.patch: add support for aarch64 2013-03-11 16:01:35 +00:00
baselibs.conf Accepting request 322627 from home:netsroth:branches:devel:libraries:c_c++ 2015-08-14 05:57:04 +00:00
Botan-1.10.10.tgz Accepting request 322627 from home:netsroth:branches:devel:libraries:c_c++ 2015-08-14 05:57:04 +00:00
Botan-fix_install_paths.patch - Devel package now is versioned so multiple devel packages may 2011-06-22 14:07:02 +00:00
Botan-fix_pkgconfig.patch - Devel package now is versioned so multiple devel packages may 2011-06-22 14:07:02 +00:00
Botan-inttypes.patch - Devel package now is versioned so multiple devel packages may 2011-06-22 14:07:02 +00:00
Botan-no-buildtime.patch - Devel package now is versioned so multiple devel packages may 2011-06-22 14:07:02 +00:00
Botan-ull_constants.patch.bz2 Accepting request 26756 from devel:libraries:c_c++ 2009-12-16 15:54:21 +00:00
Botan.changes Accepting request 322627 from home:netsroth:branches:devel:libraries:c_c++ 2015-08-14 05:57:04 +00:00
Botan.spec Accepting request 322627 from home:netsroth:branches:devel:libraries:c_c++ 2015-08-14 05:57:04 +00:00
dont-set-mach-value.diff Accepting request 159650 from home:cgiboudeaux:branches:devel:libraries:c_c++ 2013-03-18 14:19:03 +00:00
ppc64le-support.patch Accepting request 209893 from openSUSE:Factory:PowerLE 2013-12-09 09:36:17 +00:00