Pedro Monreal Gonzalez
5eae70dad1
- Version update to 1.67 [bsc#1180215, CVE-2020-28052]
* CVE-2020-28052: OpenBSDBCrypt.checkPassword utility method
compared incorrect data when checking the password
* Defects Fixed:
- BCJSSE: SunJSSE compatibility fix - override of getChannel()
removed and 'urgent data' behaviour should now conform to
what the SunJSSE expects
- Nested BER data could sometimes cause issues in octet strings
- Certificates/CRLs with short signatures could cause an exception
in toString() in the BC X509 Certificate implmentation
- In line with latest changes in the JVM, SignatureSpis which
don't require parameters now return null on engineGetParameters()
- The RSA KeyFactory now always preferentially produces RSAPrivateCrtKey
where it can on requests for a KeySpec based on an RSAPrivateKey
- CMSTypedStream$FullReaderStream now handles zero length reads correctly
- Unecessary padding was added on KMAC when the key string was block aligned
- Zero length data would cause an unexpected exception from RFC5649WrapEngine
- OpenBSDBcrypt was failing to handle some valid prefixes
* Additional Features and Functionality
- Performance improvement of Argon2 and Noekeon
- A setSessionKeyObfuscation() method has been added to
PublicKeyKeyEncryptionMethodGenerator to allow turning off of session key
obfuscation (default is on, method primarily to get around early version
GPG issues with AES-128 keys)
- Implemented 'safegcd' constant-time modular inversion (as well as a
variable-time variant). It has replaced Fermat inversion in all our EC
code, and BigInteger.modInverse in several other places, particularly
signers. This improves side-channel protection, and also gives a
significant performance boost
- Performance of custom binary ECC curves and Edwards Curves has been improved
OBS-URL: https://build.opensuse.org/request/show/857837
OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=62
46 lines
1.5 KiB
XML
46 lines
1.5 KiB
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<project>
|
|
<modelVersion>4.0.0</modelVersion>
|
|
<groupId>org.bouncycastle</groupId>
|
|
<artifactId>bcpg-jdk15on</artifactId>
|
|
<packaging>jar</packaging>
|
|
<name>Bouncy Castle OpenPGP API</name>
|
|
<version>1.67</version>
|
|
<description>The Bouncy Castle Java API for handling the OpenPGP protocol. This jar contains the OpenPGP API for JDK 1.5 and up. The APIs can be used in conjunction with a JCE/JCA provider such as the one provided with the Bouncy Castle Cryptography APIs.</description>
|
|
<url>http://www.bouncycastle.org/java.html</url>
|
|
<licenses>
|
|
<license>
|
|
<name>Bouncy Castle Licence</name>
|
|
<url>http://www.bouncycastle.org/licence.html</url>
|
|
<distribution>repo</distribution>
|
|
</license>
|
|
<license>
|
|
<name>Apache Software License, Version 1.1</name>
|
|
<url>http://www.apache.org/licenses/LICENSE-1.1</url>
|
|
<distribution>repo</distribution>
|
|
</license>
|
|
</licenses>
|
|
<scm>
|
|
<url>https://github.com/bcgit/bc-java</url>
|
|
</scm>
|
|
<issueManagement>
|
|
<system>GitHub</system>
|
|
<url>https://github.com/bcgit/bc-java/issues</url>
|
|
</issueManagement>
|
|
<developers>
|
|
<developer>
|
|
<id>feedback-crypto</id>
|
|
<name>The Legion of the Bouncy Castle Inc.</name>
|
|
<email>feedback-crypto@bouncycastle.org</email>
|
|
</developer>
|
|
</developers>
|
|
<dependencies>
|
|
<dependency>
|
|
<groupId>org.bouncycastle</groupId>
|
|
<artifactId>bcprov-jdk15on</artifactId>
|
|
<version>1.67</version>
|
|
<type>jar</type>
|
|
</dependency>
|
|
</dependencies>
|
|
</project>
|