FEDORA-2018-98ab6b4e56 created by thm a year ago for Fedora 27
stable

Update Botan2 to 2.7.0.

Focus of this release is on performance and side channel hardening.

  • Address side channels in RSA key generation and ECDSA signing
  • Side channel hardening in many core algorithms (modular exponentiation, ECC scalar multiply, Karatsuba multiplication, Barrett reduction, etc) to reduce the risk of future exploitable side channels.
  • Many optimizations for ECC operations, RSA (including key gen), DSA, DH, and XMSS. Typical speedups vs 2.6.0 is 10 to 40% depending on operation and key size.
  • Add Scrypt password hashing. Also supported is using Scrypt to derive keys for private key encryption (format compatible with upcoming OpenSSL 1.1.1)
  • Add base32 encoding/decoding
  • Plus many bug fixes and smaller enhancements documented in the release notes

How to install

sudo dnf upgrade --advisory=FEDORA-2018-98ab6b4e56

This update has been submitted for testing by thm.

a year ago

This update has been pushed to testing.

a year ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for batched by thm.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
BZ#1591163 CVE-2018-0495 openssl: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries
0
0
BZ#1591172 CVE-2018-0495 botan: openssl: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries [fedora-all]
0
0
BZ#1591831 CVE-2018-12435 botan: memory-cache side-channel attack on ECDSA signatures
0
0
BZ#1591833 CVE-2018-12435 botan2: botan: memory-cache side-channel attack on ECDSA signatures [fedora-all]
0
0

Automated Test Results