Accepting request 844069 from home:stroeder:branches:devel:languages:python

- update to 3.2: * CVE-2020-25659: Attempted to make RSA PKCS#1v1.5 decryption more constant time, to protect against Bleichenbacher vulnerabilities. Due to limitations imposed by our API, we cannot completely mitigate this vulnerability. * Support for OpenSSL 1.0.2 has been removed. * Added basic support for PKCS7 signing (including SMIME) via PKCS7SignatureBuilder. OBS-URL: https://build.opensuse.org/request/show/844069 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-cryptography?expand=0&rev=126
2020-10-26 14:11:17 +00:00 · 2020-10-26 14:11:17 +00:00 · ea489a9bb4
commit ea489a9bb4
parent 4ba9d27213
6 changed files with 25 additions and 15 deletions
--- a/cryptography-3.1.1.tar.gz
+++ b/cryptography-3.1.1.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:9d9fc6a16357965d282dd4ab6531013935425d0dc4950df2e0cf2a1b1ac1017d
-size 534926
--- a/cryptography-3.1.1.tar.gz.asc
+++ b/cryptography-3.1.1.tar.gz.asc
@ -1,11 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQEzBAABCAAdFiEEBf2foWz3VzUNkaVgI1rl8Sn57ZgFAl9qLroACgkQI1rl8Sn5
-7ZjBRgf/TW0/byolWTi7dzFl/yy4ghEQDdOvl5CW74ChGjHNqC0IkR/OgYC3lEgX
-Plk8T9RXwhTCgisNq6vuEyeaK61SycI22Nrtcwwl+OesLJotU46YHkiuMg9mR82u
-F9vMElvO2gvngMCTOShXiywiHJmGXsUbNITsnBTSbFIwaK7gx2w1trE97H27nvrg
-wVYcySHwV3JabeYggqyUNEOfVDI5tiVpYteRhjFXV+o06NtnH5R5csjv6AmJRAZ9
-/+KCx/kJStn7fVbFwhZ/oZZz1DN62ORm1Z99GfhYsa41g2VugVO36UEcibvKnXNu
-UHnDaq5c2LzIgh5+lPVrQBIWVj1Btw==
-=F1yj
-----END PGP SIGNATURE-----
--- a/cryptography-3.2.tar.gz
+++ b/cryptography-3.2.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e4789b84f8dedf190148441f7c5bfe7244782d9cbb194a36e17b91e7d3e1cca9
+size 540815
--- a/cryptography-3.2.tar.gz.asc
+++ b/cryptography-3.2.tar.gz.asc
@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEBf2foWz3VzUNkaVgI1rl8Sn57ZgFAl+WMFIACgkQI1rl8Sn5
+7Zg9zAf/aM7BJeAS6SYElkKSZmVM7pnv97fR7jhEuywKYxyRXcpx0EPUwTJYZq2e
+ZpbcBqaXXzGgwpj+aB5gsv76C0wntQ9s/tQoP5m/X9ISNfnmeAp5vc0m6/dKpXeE
+RzWF6GoSyzZO+wN/W0VYCdzQoE18xrP8yGY067sWkx8Y1kp7eyN+O3tWh75DY5pz
+GItzHshlTAcuASmrjMvZBmCiZPxgA7M1ZrdDctm8M5kRjEj7rTr65EsEV7d6kVPl
+iNyH22mPj+r8pm0cqq/AIBsdMQu5iRrxtFBrBvd0UIazU5lS/TSGhLL7LM+pBlFv
+BiUlCMi0PgJijtZVFXKOpGP4A9IqrQ==
+=fGCc
+-----END PGP SIGNATURE-----
--- a/python-cryptography.changes
+++ b/python-cryptography.changes
@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Mon Oct 26 11:39:02 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- update to 3.2:
+  * CVE-2020-25659: Attempted to make RSA PKCS#1v1.5 decryption more constant time,
+    to protect against Bleichenbacher vulnerabilities. Due to limitations imposed
+    by our API, we cannot completely mitigate this vulnerability.
+  * Support for OpenSSL 1.0.2 has been removed.
+  * Added basic support for PKCS7 signing (including SMIME) via PKCS7SignatureBuilder.
+
 -------------------------------------------------------------------
 Mon Sep 28 10:49:56 UTC 2020 - Dirk Mueller <dmueller@suse.com>

--- a/python-cryptography.spec
+++ b/python-cryptography.spec
@ -19,7 +19,7 @@
 %{?!python_module:%define python_module() python-%{**} python3-%{**}}
 %bcond_without python2
 Name:           python-cryptography
-Version:        3.1.1
+Version:        3.2
 Release:        0
 Summary:        Python library which exposes cryptographic recipes and primitives
 License:        Apache-2.0 OR BSD-3-Clause