bouncycastle/bcprov-jdk15on-1.64.pom

<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<project>
  <modelVersion>4.0.0</modelVersion>
  <groupId>org.bouncycastle</groupId>
  <artifactId>bcprov-jdk15on</artifactId>
  <packaging>jar</packaging>
  <name>Bouncy Castle Provider</name>
  <version>1.64</version>
  <description>The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains JCE provider and lightweight API for the Bouncy Castle Cryptography APIs for Java 5 to Java 11.</description>
  <url>https://www.bouncycastle.org/java.html</url>
  <licenses>
    <license>
      <name>Bouncy Castle Licence</name>
      <url>https://www.bouncycastle.org/licence.html</url>
      <distribution>repo</distribution>
    </license>
  </licenses>
  <scm>
    <url>https://github.com/bcgit/bc-java</url>
  </scm>
  <issueManagement>
     <system>GitHub</system>
     <url>https://github.com/bcgit/bc-java/issues</url>
  </issueManagement>
  <developers>
    <developer>
      <id>feedback-crypto</id>
      <name>The Legion of the Bouncy Castle Inc.</name>
      <email>feedback-crypto@bouncycastle.org</email>
    </developer>
  </developers>
</project>
Accepting request 737444 from home:pmonrealgonzalez:branches:Java:packages - Version update to 1.64 [bsc#1153385, CVE-2019-17359] [bsc#1096291, CVE-2018-1000180][bsc#1100694, CVE-2018-1000613] * Security Advisory: - CVE-2019-17359: A change to the ASN.1 parser in 1.63 introduced a regression that can cause an OutOfMemoryError to occur on parsing ASN.1 data. * Defects Fixed: - OpenSSH: Fixed padding in generated Ed25519 private keys. - GOST3410-2012-512 now uses the GOST3411-2012-256 as its KDF digest. - Validation of headers in PemReader now looks for tailing dashes in header. - Some compatibility issues around the signature encryption algorithm field in CMS SignedData and the GOST algorithms have been addressed. * Additional Features and Functionality: - PKCS12 key stores containing only certificates can now be created without the need to provide passwords. - BCJSSE: Initial support for AlgorithmConstraints; protocol versions and cipher suites. - BCJSSE: Initial support for 'jdk.tls.disabledAlgorithms'; protocol versions and cipher suites. - BCJSSE: Add SecurityManager check to access session context. - BCJSSE: Improved SunJSSE compatibility of the NULL_SESSION. - BCJSSE: SSLContext algorithms updated for SunJSSE compatibility (default enabled protocols). - The digest functions Haraka-256 and Haraka-512 have been added to the provider and the light-weight API - XMSS/XMSS^MT key management now allows for allocating subsets of the private key space using the extraKeyShard() method. Use of StateAwareSignature is now deprecated. - Support for Java 11's NamedParameterSpec class has been added (using reflection) to the EC and EdEC KeyPairGenerator implementations. OBS-URL: https://build.opensuse.org/request/show/737444 OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=51 2019-10-11 12:59:50 +02:00			`<?xml version="1.0" encoding="UTF-8" standalone="no"?>`
removed _link OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=5 2012-02-24 09:48:17 +01:00			`<project>`
			`<modelVersion>4.0.0</modelVersion>`
			`<groupId>org.bouncycastle</groupId>`
- Version bump to 1.50 to match Fedora OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=19 2015-02-10 13:31:42 +01:00			`<artifactId>bcprov-jdk15on</artifactId>`
removed _link OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=5 2012-02-24 09:48:17 +01:00			`<packaging>jar</packaging>`
			`<name>Bouncy Castle Provider</name>`
Accepting request 737444 from home:pmonrealgonzalez:branches:Java:packages - Version update to 1.64 [bsc#1153385, CVE-2019-17359] [bsc#1096291, CVE-2018-1000180][bsc#1100694, CVE-2018-1000613] * Security Advisory: - CVE-2019-17359: A change to the ASN.1 parser in 1.63 introduced a regression that can cause an OutOfMemoryError to occur on parsing ASN.1 data. * Defects Fixed: - OpenSSH: Fixed padding in generated Ed25519 private keys. - GOST3410-2012-512 now uses the GOST3411-2012-256 as its KDF digest. - Validation of headers in PemReader now looks for tailing dashes in header. - Some compatibility issues around the signature encryption algorithm field in CMS SignedData and the GOST algorithms have been addressed. * Additional Features and Functionality: - PKCS12 key stores containing only certificates can now be created without the need to provide passwords. - BCJSSE: Initial support for AlgorithmConstraints; protocol versions and cipher suites. - BCJSSE: Initial support for 'jdk.tls.disabledAlgorithms'; protocol versions and cipher suites. - BCJSSE: Add SecurityManager check to access session context. - BCJSSE: Improved SunJSSE compatibility of the NULL_SESSION. - BCJSSE: SSLContext algorithms updated for SunJSSE compatibility (default enabled protocols). - The digest functions Haraka-256 and Haraka-512 have been added to the provider and the light-weight API - XMSS/XMSS^MT key management now allows for allocating subsets of the private key space using the extraKeyShard() method. Use of StateAwareSignature is now deprecated. - Support for Java 11's NamedParameterSpec class has been added (using reflection) to the EC and EdEC KeyPairGenerator implementations. OBS-URL: https://build.opensuse.org/request/show/737444 OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=51 2019-10-11 12:59:50 +02:00			`<version>1.64</version>`
			`<description>The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains JCE provider and lightweight API for the Bouncy Castle Cryptography APIs for Java 5 to Java 11.</description>`
			`<url>https://www.bouncycastle.org/java.html</url>`
removed _link OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=5 2012-02-24 09:48:17 +01:00			`<licenses>`
			`<license>`
			`<name>Bouncy Castle Licence</name>`
Accepting request 737444 from home:pmonrealgonzalez:branches:Java:packages - Version update to 1.64 [bsc#1153385, CVE-2019-17359] [bsc#1096291, CVE-2018-1000180][bsc#1100694, CVE-2018-1000613] * Security Advisory: - CVE-2019-17359: A change to the ASN.1 parser in 1.63 introduced a regression that can cause an OutOfMemoryError to occur on parsing ASN.1 data. * Defects Fixed: - OpenSSH: Fixed padding in generated Ed25519 private keys. - GOST3410-2012-512 now uses the GOST3411-2012-256 as its KDF digest. - Validation of headers in PemReader now looks for tailing dashes in header. - Some compatibility issues around the signature encryption algorithm field in CMS SignedData and the GOST algorithms have been addressed. * Additional Features and Functionality: - PKCS12 key stores containing only certificates can now be created without the need to provide passwords. - BCJSSE: Initial support for AlgorithmConstraints; protocol versions and cipher suites. - BCJSSE: Initial support for 'jdk.tls.disabledAlgorithms'; protocol versions and cipher suites. - BCJSSE: Add SecurityManager check to access session context. - BCJSSE: Improved SunJSSE compatibility of the NULL_SESSION. - BCJSSE: SSLContext algorithms updated for SunJSSE compatibility (default enabled protocols). - The digest functions Haraka-256 and Haraka-512 have been added to the provider and the light-weight API - XMSS/XMSS^MT key management now allows for allocating subsets of the private key space using the extraKeyShard() method. Use of StateAwareSignature is now deprecated. - Support for Java 11's NamedParameterSpec class has been added (using reflection) to the EC and EdEC KeyPairGenerator implementations. OBS-URL: https://build.opensuse.org/request/show/737444 OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=51 2019-10-11 12:59:50 +02:00			`<url>https://www.bouncycastle.org/licence.html</url>`
removed _link OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=5 2012-02-24 09:48:17 +01:00			`<distribution>repo</distribution>`
			`</license>`
			`</licenses>`
			`<scm>`
- Version bump to 1.50 to match Fedora OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=19 2015-02-10 13:31:42 +01:00			`<url>https://github.com/bcgit/bc-java</url>`
removed _link OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=5 2012-02-24 09:48:17 +01:00			`</scm>`
- Version bump to 1.50 to match Fedora OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=19 2015-02-10 13:31:42 +01:00			`<issueManagement>`
Update to 1.58 OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=34 2017-09-15 09:30:46 +02:00			`<system>GitHub</system>`
			`<url>https://github.com/bcgit/bc-java/issues</url>`
- Version bump to 1.50 to match Fedora OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=19 2015-02-10 13:31:42 +01:00			`</issueManagement>`
			`<developers>`
			`<developer>`
			`<id>feedback-crypto</id>`
			`<name>The Legion of the Bouncy Castle Inc.</name>`
			`<email>feedback-crypto@bouncycastle.org</email>`
			`</developer>`
			`</developers>`
			`</project>`