SHA256
1
0
forked from pool/Botan

Accepting request 233386 from devel:libraries:c_c++

- Update to 1.10.8
  * Fix a bug in primality testing introduced in 1.8.3 which caused
    only a single random base, rather than a sequence of random bases,
    to be used in the Miller-Rabin test. This increased the
    probability that a non-prime would be accepted, for instance a
    1024 bit number would be incorrectly classed as prime with
    probability around 2^-40. Reported by Jeff Marrison.
  * The key length limit on HMAC has been raised to 512 bytes,
    allowing the use of very long passphrases with PBKDF2.
- Update to 1.10.7
  * OAEP had two bugs, one of which allowed it to be used even if the
    key was too small, and the other of which would cause a crash
    during decryption if the EME data was too large for the associated
    key. (forwarded request 233310 from netsroth)

OBS-URL: https://build.opensuse.org/request/show/233386
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/Botan?expand=0&rev=33
This commit is contained in:
Stephan Kulow
2014-05-11 12:16:33 +00:00
committed by Git OBS Bridge
4 changed files with 24 additions and 5 deletions

BIN
Botan-1.10.6.tbz (Stored with Git LFS)

Binary file not shown.

BIN
Botan-1.10.8.tbz (Stored with Git LFS) Normal file

Binary file not shown.

View File

@@ -1,3 +1,22 @@
-------------------------------------------------------------------
Fri May 8 18:00:00 CET 2014 - tbehrens@suse.com
- Update to 1.10.8
* Fix a bug in primality testing introduced in 1.8.3 which caused
only a single random base, rather than a sequence of random bases,
to be used in the Miller-Rabin test. This increased the
probability that a non-prime would be accepted, for instance a
1024 bit number would be incorrectly classed as prime with
probability around 2^-40. Reported by Jeff Marrison.
* The key length limit on HMAC has been raised to 512 bytes,
allowing the use of very long passphrases with PBKDF2.
- Update to 1.10.7
* OAEP had two bugs, one of which allowed it to be used even if the
key was too small, and the other of which would cause a crash
during decryption if the EME data was too large for the associated
key.
-------------------------------------------------------------------
Mon Mar 3 13:57:13 CET 2014 - ro@suse.de

View File

@@ -20,13 +20,13 @@
%define short_version 1.10
Name: Botan
Version: 1.10.6
Version: 1.10.8
Release: 0
Url: http://botan.randombit.net
Summary: A C++ Crypto Library
License: BSD-2-Clause
Group: Development/Libraries/C and C++
Source: http://botan.randombit.net/files/%{name}-%{version}.tbz
Source: https://files.randombit.net/botan/%{name}-%{version}.tbz
Source2: baselibs.conf
Patch0: Botan-inttypes.patch
Patch1: Botan-ull_constants.patch.bz2