pool/libnettle
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 885693 from home:AndreasStieger:branches:security:tls

Browse Source 
change reference to boo#1184401 and add CVE-2021-20305

OBS-URL: https://build.opensuse.org/request/show/885693
OBS-URL: https://build.opensuse.org/package/show/security:tls/libnettle?expand=0&rev=19
This commit is contained in:
Pedro Monreal Gonzalez 2021-04-15 14:35:59 +00:00 committed by Git OBS Bridge
parent 95a30c6c44
commit fc8e2b4e43
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
libnettle.changes
View File

@ -4,7 +4,7 @@ Sun Mar 21 10:17:35 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de>
- GNU Nettle 3.7.2:
* fix a bug in ECDSA signature verification that could lead to a
denial of service attack (via an assertion failure) or possibly
incorrect results (boo#1183835)
incorrect results (CVE-2021-20305, boo#1184401)
* fix a few related problems where scalars are required to be
canonically reduced modulo the ECC group order, but in fact may
be slightly larger