FEDORA-2016-1b64186cbd created by thm 2 years ago for Fedora 23
obsolete

Botan 1.10.14

  • NOTE WELL: Botan 1.10.x is supported for security patches only until 2017-12-31
  • Fix integer overflow during BER decoding, found by Falko Strenzke. This bug is not thought to be directly exploitable but upgrading ASAP is advised. (CVE-2016-9132)
  • Fix two cases where (in error situations) an exception would be thrown from a destructor, causing a call to std::terminate.
  • When RC4 is disabled in the build, also prevent it from being included in the OpenSSL provider. (GH #638)

This update has been submitted for testing by thm.

2 years ago

This update has been pushed to testing.

2 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
BZ#1400894 CVE-2016-9132 botan: Integer overflow in BER decoder
0
0
BZ#1400895 CVE-2016-9132 botan: Integer overflow in BER decoder [fedora-all]
0
0

Automated Test Results