SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for bouncycastle-1.59-23.3.1.noarch.rpm :
Wed Jun 6 14:00:00 2018 abergmannAATTsuse.com
- Security fixes until 1.59:

* CVE-2017-13098: Fix against Bleichenbacher oracle when not
using the lightweight APIs (boo#1072697).

* CVE-2016-1000338: Fix DSA ASN.1 validation during encoding of
signature on verification (boo#1095722).

* CVE-2016-1000339: Fix AESEngine key information leak via lookup
table accesses (boo#1095853).

* CVE-2016-1000340: Fix carry propagation bugs in the
implementation of squaring for several raw math classes
(boo#1095854).

* CVE-2016-1000341: Fix DSA signature generation vulnerability to
timing attack (boo#1095852).

* CVE-2016-1000342: Fix ECDSA ASN.1 validation during encoding of
signature on verification (boo#1095850).

* CVE-2016-1000343: Fix week default settings for private DSA key
pair generation (boo#1095849).

* CVE-2016-1000344: Remove DHIES from the provider to disable the
unsafe usage of ECB mode (boo#1096026).

* CVE-2016-1000345: Fix DHIES/ECIES CBC mode padding oracle
attack (boo#1096025).

* CVE-2016-1000346: Fix other party DH public key validation
(boo#1096024).

* CVE-2016-1000352: Remove ECIES from the provider to disable the
unsafe usage of ECB mode (boo#1096022).

* Release notes:
http://www.bouncycastle.org/releasenotes.html

Sat Feb 20 13:00:00 2016 tchvatalAATTsuse.com
- Version update to 1.54:

* No obvious changelog to be found

* Fixes bnc#967521 CVE-2015-7575

Fri Oct 23 14:00:00 2015 tchvatalAATTsuse.com
- Version update to 1.53 (latest upstream)

* No obvious changelog

* Fixes bnc#951727 CVE-2015-7940

Wed Mar 18 13:00:00 2015 tchvatalAATTsuse.com
- Fix build with new javapackages-tools

Fri Feb 20 13:00:00 2015 tchvatalAATTsuse.com
- Disable tests on obs as they hang

Tue Feb 10 13:00:00 2015 tchvatalAATTsuse.com
- Version bump to 1.50 to match Fedora
- Cleanup with spec-cleaner

Mon Jul 7 14:00:00 2014 tchvatalAATTsuse.com
- Depend on junit not junit4

Thu May 15 14:00:00 2014 darinAATTdarins.net
- disable bytecode check on sle_11

Thu Nov 14 13:00:00 2013 mvyskocilAATTsuse.com
- Don\'t own /etc/java/security to not clash with javapackages-tools
- Don\'t mark random files as config

Mon Sep 9 14:00:00 2013 tchvatalAATTsuse.com
- Move from jpackage-utils to javapackage-tools

Wed Aug 28 14:00:00 2013 mvyskocilAATTsuse.com
- use add_maven_depmap from recent javapackages-tools
- temporary mozilla-nss to BT: in order to pass a tests

Fri May 18 14:00:00 2012 mvyskocilAATTsuse.cz
- bumb target to 1.6

Mon Jan 16 13:00:00 2012 mvyskocilAATTsuse.cz
- Initial packaging for SUSE
from Fedora\'s bouncycastle 1.46


  
ICM