python/python-rsa
SHA256
14
0
Fork 0
forked from pool/python-rsa
Code Pull Requests Activity

- update to v 4.6.0 (bsc#1172389)

Browse Source 
* Choose blinding factor relatively prime to N. Thanks Christian Heimes for pointing this out.
  * Reject cyphertexts (when decrypting) and signatures (when verifying) that have been modified by prepending zero bytes. This resolves CVE-2020-13757. Thanks Carnil for pointing this out.
  * Rolled back the switch to Poetry, and reverted back to using Pipenv + setup.py for dependency management. There apparently is an issue no-binary installs of packages build with Poetry. This fixes #148
Limited SHA3 support to those Python versions (3.6+) that support it natively. The third-party library that adds support for this to Python 3.5 is a binary package, and thus breaks the pure-Python nature of Python-RSA. This should fix #147.
  * Added support for Python 3.8.
  * Dropped support for Python 2 and 3.4.
  * Added type annotations to the source code. This will make Python-RSA easier to use in your IDE, and allows better type checking.
  * Added static type checking via MyPy.
  * Fix #129 Installing from source gives UnicodeDecodeError.
  * Switched to using Poetry for package management.
  * Choose blinding factor relatively prime to N. Thanks Christian Heimes for pointing this out.
  * Reject cyphertexts (when decrypting) and signatures (when verifying) that
  * have been modified by prepending zero bytes. This resolves CVE-2020-13757.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-rsa?expand=0&rev=30
This commit is contained in:
Dirk Mueller
2020-06-23 15:43:48 +00:00
committed by Git OBS Bridge
parent f8411b6d59
commit 06f1634199
4 changed files with 25 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
python-rsa.changes
View File

@@ -1,3 +1,21 @@
-------------------------------------------------------------------
Tue Jun 23 15:36:45 UTC 2020 - Dirk Mueller <dmueller@suse.com>
- update to v 4.6.0 (bsc#1172389)
* Choose blinding factor relatively prime to N. Thanks Christian Heimes for pointing this out.
* Reject cyphertexts (when decrypting) and signatures (when verifying) that have been modified by prepending zero bytes. This resolves CVE-2020-13757. Thanks Carnil for pointing this out.
* Rolled back the switch to Poetry, and reverted back to using Pipenv + setup.py for dependency management. There apparently is an issue no-binary installs of packages build with Poetry. This fixes #148
Limited SHA3 support to those Python versions (3.6+) that support it natively. The third-party library that adds support for this to Python 3.5 is a binary package, and thus breaks the pure-Python nature of Python-RSA. This should fix #147.
* Added support for Python 3.8.
* Dropped support for Python 2 and 3.4.
* Added type annotations to the source code. This will make Python-RSA easier to use in your IDE, and allows better type checking.
* Added static type checking via MyPy.
* Fix #129 Installing from source gives UnicodeDecodeError.
* Switched to using Poetry for package management.
* Choose blinding factor relatively prime to N. Thanks Christian Heimes for pointing this out.
* Reject cyphertexts (when decrypting) and signatures (when verifying) that
* have been modified by prepending zero bytes. This resolves CVE-2020-13757.
-------------------------------------------------------------------
Sat Mar 23 18:54:24 UTC 2019 - Dirk Mueller <dmueller@suse.com>