SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for Botan-doc-2.19.3-2.3.noarch.rpm :

* Fri Nov 17 2023 Marcus Meissner - remove botan binary (moves to Botan3)
* Thu Nov 17 2022 Jason Sikes - Update to 2.19.3:
* validate that an embedded certificate was issued by the end-entity issuing certificate authority when checking OCSP responses.
* CVE-2022-43705
* bsc#1205509
* Wed Jun 08 2022 Dirk Müller - update to 2.19.2:
* Add support for parallel computation in Argon2
* Add SSSE3 implementation of Argon2
* The OpenSSL provider was incompatible with OpenSSL 3.0. It has been removed
* Avoid using reserve in secure_vector appending, which caused a performance problem
* Fix TLS::Text_Policy behavior when X25519 is disabled at build time
* Fix several warnings from Clang
* Sun Jan 23 2022 Andreas Stieger - update to 2.19.1:
* Add a forward error correction code compatible with the zfec library
* Wed Nov 24 2021 Dirk Müller - update to 2.18.2:
* Avoid using short exponents when encrypting in ElGamal, as some PGP implementations generate keys with parameters that are weak when short exponents are used CVE-2021-40529 boo#1190244
* Fix a low risk OAEP decryption side channel
* Work around a miscompilation of SHA-3 caused by a bug in Clang 12 and XCode 13
* Remove support in OpenSSL provider for algorithms which are disabled by default in OpenSSL 3.0
* Add CI based on GitHub actions to replace Travis CI
* Fix the online OCSP test, as the certificate involved had expired.
* Fix some test failures induced by the expiration of the trust root \"DST Root CA X3\"
* Mon May 10 2021 Andreas Stieger - Botan 2.18.1:
* Fix a build regression in 2.18.0 which caused linker flags which contain -l within them (such as -fuse-linker-plugin) to be misinterpreted
* Fix a bug which caused decoding a certificate which contained more than one name in a single RDN
* Fix a bug which caused OID lookup failures when run in a locale which uses thousands separators (pt_BR was reported as having this issue)
* DNS names in name constraints were compared with case sensitivity, which could cause valid certificates to be rejected
* X.509 name constraint extensions were rejected if non-critical. RFC 5280 requires conforming CAs issue such extensions as critical, but not all certificates are compliant, and all other known implementations do not require this
* X.509 name constraints were incorrectly applied to the certificate which included the constraint- build with lzma compression support- build with SQLite support- build with TPM support- fix SLE 12 build
* Fri Apr 16 2021 Ferdinand Thiessen - Botan 2.18.0
* Add support for implementing custom RNG objects through the FFI interface
* Improve safegcd bounds, improving runtime performance
* Reject non-TLS messages as quickly as possible without waiting for a full record.
* Fixes for TLS::Stream::async_shutdown- Removed unneeded GNU MP build requirement, support was dropped with version 1.11.10- Enabled check target, verify integrity of build library
* Wed Dec 23 2020 Andreas Stieger - Botan 2.17.3:
* Harden against side-channels from decoding secret values by changing the base64, base58, base32, and hex encoding and decoding opearations to run in constant time
* Fri Nov 13 2020 Andreas Stieger - Botan 2.17.2:
* Fix build problem on ppc64
* Resolve an issue in the modular square root algorithm
* Sat Nov 07 2020 Andreas Stieger - Botan 2.17.1:
* Fix bugs in ECDSA signature generation and verifications under specific circumstances
* developer visible changes, including deprecation with warnings
* optimization in the non-hardware assisted AES key generation
* Add more detection logic for AVX-512 features
* Fix a bug parsing deeply nested cipher names
* Prevent requesting DER encoding of signatures when the algorithm did not support it
  
ICM