Information on source package botan1.10

Available versions

ReleaseVersion
jessie (security)1.10.8-2+deb8u2
stretch1.10.16-1

Open issues

BugjessiestretchDescription
CVE-2017-14737vulnerable (no DSA)vulnerable (no DSA)A cryptographic cache-based side channel in the RSA implementation in ...
CVE-2016-9132vulnerable (no DSA, ignored)fixedIn Botan 1.8.0 through 1.11.33, when decoding BER data an integer over ...

Resolved issues

BugDescription
CVE-2018-9860An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An ...
CVE-2018-20187A side-channel issue was discovered in Botan before 2.9.0. An attacker ...
CVE-2018-12435Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-chan ...
CVE-2017-7252Incorrect bcrypt computation
CVE-2017-2801A programming error exists in a way Randombit Botan cryptographic libr ...
CVE-2016-8871In Botan 1.11.29 through 1.11.32, RSA decryption with certain padding ...
CVE-2016-6879The X509_Certificate::allowed_usage function in botan 1.11.x before 1. ...
CVE-2016-6878The Curve25519 code in botan before 1.11.31, on systems without a nati ...
CVE-2016-2850Botan 1.11.x before 1.11.29 does not enforce TLS policy for (1) signat ...
CVE-2016-2849Botan before 1.10.13 and 1.11.x before 1.11.29 do not use a constant-t ...
CVE-2016-2196Heap-based buffer overflow in the P-521 reduction function in Botan 1. ...
CVE-2016-2195Integer overflow in the PointGFp constructor in Botan before 1.10.11 a ...
CVE-2016-2194The ressol function in Botan before 1.10.11 and 1.11.x before 1.11.27 ...
CVE-2015-7827Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remo ...
CVE-2015-7826botan 1.11.x before 1.11.22 improperly handles wildcard matching again ...
CVE-2015-7825botan before 1.11.22 improperly validates certificate paths, which all ...
CVE-2015-7824botan 1.11.x before 1.11.22 makes it easier for remote attackers to de ...
CVE-2015-5727The BER decoder in Botan 1.10.x before 1.10.10 and 1.11.x before 1.11. ...
CVE-2015-5726The BER decoder in Botan 0.10.x before 1.10.10 and 1.11.x before 1.11. ...
CVE-2014-9742The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x bef ...

Security announcements

DSA / DLADescription
DLA-1125-1botan1.10 - security update
DSA-3939-1botan1.10 - security update
DLA-915-1botan1.10 - security update
DLA-786-1botan1.10 - security update
DSA-3565-1botan1.10 - security update
DLA-449-1botan1.10 - security update

Search for package or bug name: Reporting problems