stable

botan2-2.7.0-1.fc27

FEDORA-2018-98ab6b4e56 created by thm 7 years ago for Fedora 27

Update Botan2 to 2.7.0.

Focus of this release is on performance and side channel hardening.

  • Address side channels in RSA key generation and ECDSA signing
  • Side channel hardening in many core algorithms (modular exponentiation, ECC scalar multiply, Karatsuba multiplication, Barrett reduction, etc) to reduce the risk of future exploitable side channels.
  • Many optimizations for ECC operations, RSA (including key gen), DSA, DH, and XMSS. Typical speedups vs 2.6.0 is 10 to 40% depending on operation and key size.
  • Add Scrypt password hashing. Also supported is using Scrypt to derive keys for private key encryption (format compatible with upcoming OpenSSL 1.1.1)
  • Add base32 encoding/decoding
  • Plus many bug fixes and smaller enhancements documented in the release notes

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-98ab6b4e56

This update has been submitted for testing by thm.

7 years ago

This update has been pushed to testing.

7 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

7 years ago

This update has been submitted for batched by thm.

7 years ago

This update has been submitted for stable by bodhi.

7 years ago

This update has been pushed to stable.

7 years ago

Please log in to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
Builds
1
botan2-2.7.0-1.fc27
BZ#1591163 CVE-2018-0495 openssl: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries
0
0
BZ#1591172 CVE-2018-0495 botan: openssl: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries [fedora-all]
0
0
BZ#1591831 CVE-2018-12435 botan: memory-cache side-channel attack on ECDSA signatures
0
0
BZ#1591833 CVE-2018-12435 botan2: botan: memory-cache side-channel attack on ECDSA signatures [fedora-all]
0
0
botan2-2.7.0-1.fc27

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-16-cfb44.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy