FEDORA-2016-f2aae0dbc5

security update in Fedora 23 for botan

Status: stable 3 years ago

From the upstream release notes:

Botan 1.10.13 has been released backporting some side channel protections for ECDSA signatures (CVE-2016-2849) and PKCS #1 RSA decryption (CVE-2015-7827).

How to install

sudo dnf upgrade --advisory=FEDORA-2016-f2aae0dbc5

Comments 5

This update has been submitted for testing by thm.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by thm.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 3

00 #1311989 CVE-2015-7827 botan: PKCS #1 decoding not in constant time
00 #1330875 CVE-2016-2849 CVE-2016-2850 botan: two issues fixed in 1.11.29
00 #1330876 CVE-2016-2849 CVE-2016-2850 botan: two issues fixed in 1.11.29 [fedora-all]

Automated Test Results