Overview

Request 595523 accepted

- Update to Botan 2.6
* CVE-2018-9860 Fix a bug decrypting TLS CBC ciphertexts which could for a
malformed ciphertext cause the decryptor to read and HMAC an additional 64K
bytes of data which is not part of the record. This could cause a crash if
the read went into unmapped memory. No information leak or out of bounds
write occurs.
* Add support for OAEP labels (GH #1508)
* RSA signing is about 15% faster (GH #1523) and RSA verification is about 50% faster.
* Add exponent blinding to RSA (GH #1523)
* Add Cipher_Mode::create and AEAD_Mode::create (GH #1527)
* Fix bug in TLS server introduced in 2.5 which caused connection to fail if
the client offered any signature algorithm not known to the server (for
example RSA/SHA-224).
* Fix a bug in inline asm that would with GCC 7.3 cause incorrect
computations and an infinite loop during the tests. (GH #1524 #1529)

Leap Reviewbot's avatar
Leap Reviewbot (leaper) -
reviewer

devel:libraries:c_c++/Botan@236d638f83c10f41f6b87f6724e25793 -> openSUSE:Leap:15.0/Botan

expected origin is 'openSUSE:Factory' (changed)

sr#595522 review by openSUSE:Factory:Staging:adi:59 ok

the submitted sources are in or accepted for Factory

Request History
Daniel Molkentin's avatar

dmolkentin created request

- Update to Botan 2.6
* CVE-2018-9860 Fix a bug decrypting TLS CBC ciphertexts which could for a
malformed ciphertext cause the decryptor to read and HMAC an additional 64K
bytes of data which is not part of the record. This could cause a crash if
the read went into unmapped memory. No information leak or out of bounds
write occurs.
* Add support for OAEP labels (GH #1508)
* RSA signing is about 15% faster (GH #1523) and RSA verification is about 50% faster.
* Add exponent blinding to RSA (GH #1523)
* Add Cipher_Mode::create and AEAD_Mode::create (GH #1527)
* Fix bug in TLS server introduced in 2.5 which caused connection to fail if
the client offered any signature algorithm not known to the server (for
example RSA/SHA-224).
* Fix a bug in inline asm that would with GCC 7.3 cause incorrect
computations and an infinite loop during the tests. (GH #1524 #1529)

Factory Auto's avatar

factory-auto added repo-checker as a reviewer

Please review build success

Factory Auto's avatar

factory-auto accepted review

Check script succeeded

Staging Bot's avatar

staging-bot added openSUSE:Leap:15.0:Staging:B as a reviewer

Being evaluated by staging project "openSUSE:Leap:15.0:Staging:B"

Staging Bot's avatar

staging-bot accepted review

Picked openSUSE:Leap:15.0:Staging:B

Leap Reviewbot's avatar

leaper accepted review

ok

Repo Checker's avatar

repo-checker accepted review

cycle and install check passed

Ludwig Nussel's avatar

lnussel_factory accepted review

ready to accept

Ludwig Nussel's avatar

lnussel_factory approved review

ready to accept

Ludwig Nussel's avatar

lnussel_factory accepted request

Accept to openSUSE:Leap:15.0

openSUSE Build Service is sponsored by
Places