SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libksba8-1.6.4-150600.1.2.x86_64.rpm :

* Tue Oct 17 2023 pmonrealAATTsuse.com- Do not pull revision info from GIT when autoconf is run. This removes the -unknown suffix after the version number.
* Run autoreconf for the added patch and add the build dependecies on autoconf, automake and libtool.
* Add libksba-nobetasuffix.patch [bsc#1216334]
* Tue Jun 20 2023 pmonrealAATTsuse.com- Update to 1.6.4:
* Correctly detect CMS write errors. [rK9ced7706f2]
* Release-info: https://dev.gnupg.org/T6543
* Fri Dec 23 2022 dmuellerAATTsuse.com- update to 1.6.3 (bsc#1206579, CVE-2022-47629):
* Fix another integer overflow in the CRL parser. Release-info: https://dev.gnupg.org/T6304
* Mon Oct 17 2022 pmonrealAATTsuse.com- libksba 1.6.2: [bsc#1204357, CVE-2022-3515]
* Fix integer overflow in the CRL parser.
* Sun Sep 18 2022 andreas.stiegerAATTgmx.de- libksba 1.6.1:
* Allow an OCSP server not to return the sent nonce- fix rpmlint warnings
* Fri Jun 11 2021 pmonrealAATTsuse.com- libksba 1.6.0:
* Limited support for the Authenticated-Enveloped-Data content type.
* Support password based decryption.
* Silence warnings from static analyzers.
* Interface changes relative to the 1.5.0 release: - KSBA_CT_AUTHENVELOPED_DATA NEW.
* Wed Apr 07 2021 andreas.stiegerAATTgmx.de- libksba 1.5.1:
* Support Brainpool curves specified by ECDomainParameters
* Fri Nov 20 2020 andreas.stiegerAATTgmx.de- libksba 1.5.0:
* ksba_cms_identify now identifies OpenPGP keyblock content
* Supports TR-03111 plain format ECDSA signature verification
* Fixes a CMS signed data parser bug exhibited by a somewhat strange CMS message- remove deprecated texinfo macros and update signing keyring
* Wed May 20 2020 pmonrealgonzalezAATTsuse.com- libksba 1.4.0:
* Supports ECDSA and EdDSA certificate creation and parsing.
* Supports ECDH enveloped data.
* Supports ECDSA and EdDSA signed data.
* Supports rsaPSS signature verification.
* Supports standard file descriptors in ksba_reader_read.
* Allows for optional elements in keyinfo objects.
* Fixes error detection in the CMS parser.
* Fixes memory leak in ksba_cms_identify.
* New constants KSBA_VERSION and KSBA_VERSION_NUMBER.
* New API to make creation of DER objects easy.
* Interface changes relative to the 1.3.5 release: KSBA_VERSION NEW. KSBA_VERSION_NUMBER NEW. KSBA_CT_SPC_IND_DATA_CTX NEW. KSBA_CLASS_
* NEW. KSBA_TYPE_
* NEW. ksba_der_t NEW. ksba_der_release NEW. ksba_der_builder_new NEW. ksba_der_builder_reset NEW. ksba_der_add_ptr NEW. ksba_der_add_val NEW. ksba_der_add_int NEW. ksba_der_add_oid NEW. ksba_der_add_bts NEW. ksba_der_add_der NEW. ksba_der_add_tag NEW. ksba_der_add_end NEW. ksba_der_builder_get NEW.
* Thu Feb 22 2018 fvogtAATTsuse.com- Use %license (boo#1082318)
* Mon Aug 22 2016 astiegerAATTsuse.com- libksba 1.3.5:
* Limit the allowed size of complex ASN.1 objects (e.g. certificates) to 16MiB.
* Avoid read access to unitialized memory.
* Improve detection of invalid RDNs.
* Encode the OCSP nonce value as an octet string as described by RFC-6960.
* Tue May 10 2016 astiegerAATTsuse.com- libksba 1.3.4:
* Fixed two OOB read access bugs which could be used to force a DoS. boo#979261 CVE-2016-4574, CVE-2016-4579
* Fixed a crash due to faulty curve OID lookup code.
* Synced the list of supported curves with those of Libgcrypt.
* New configure option --enable-build-timestamp; a build timestamp is not anymore used by default.
* Fri Apr 10 2015 astiegerAATTsuse.com- libksba 1.3.3:
* Fixed an integer overflow in the DN decoder.
* Now returns an error instead of terminating the process for certain bad BER encodings.
* Improved the parsing of utf-8 strings in DNs.
* Allow building with newer versions of Bison.
* Thu Mar 19 2015 astiegerAATTsuse.com- remove libtool requirement
* Wed Nov 26 2014 andreas.stiegerAATTgmx.de- libksba 1.3.2 [boo#907074] [CVE-2014-9087] This version contains a security update which fixes a buffer overflow in OID to string conversion code that can be triggered by a specially crafted S/MIME message or ECC based OpenPGP data. Users of GnuPG 2.x should install this version and restart the dirmgr process.
* Fixed a buffer overflow in ksba_oid_to_str.- verify source signature
  
ICM