FEDORA-EPEL-2016-090cbd0a83 created by thm 2 years ago for Fedora EPEL 7
stable

Botan 1.10.14

  • NOTE WELL: Botan 1.10.x is supported for security patches only until 2017-12-31
  • Fix integer overflow during BER decoding, found by Falko Strenzke. This bug is not thought to be directly exploitable but upgrading ASAP is advised. (CVE-2016-9132)
  • Fix two cases where (in error situations) an exception would be thrown from a destructor, causing a call to std::terminate.
  • When RC4 is disabled in the build, also prevent it from being included in the OpenSSL provider. (GH #638)

This update has been submitted for testing by thm.

2 years ago

This update has been pushed to testing.

2 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for stable by thm.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1400894 CVE-2016-9132 botan: Integer overflow in BER decoder
0
0
BZ#1400896 CVE-2016-9132 botan: Integer overflow in BER decoder [epel-all]
0
0

Automated Test Results