botan (2.9.0-2) unstable; urgency=medium * Upload to Sid. -- Laszlo Boszormenyi (GCS) Sun, 13 Jan 2019 18:56:06 +0000 botan (2.9.0-1) experimental; urgency=medium * New upstream release. * Fix CVE-2018-20187: address a side channel during ECC key generation, which used an unblinded Montgomery ladder (closes: #918732). * Library transition from libbotan-2-8 to libbotan-2-9 . -- Laszlo Boszormenyi (GCS) Sat, 12 Jan 2019 13:16:11 +0000 botan (2.8.0-3) unstable; urgency=medium * Fix architecture independent build. -- Laszlo Boszormenyi (GCS) Tue, 08 Jan 2019 01:07:20 +0000 botan (2.8.0-2) unstable; urgency=medium * Upload to Sid. -- Laszlo Boszormenyi (GCS) Mon, 07 Jan 2019 20:01:19 +0000 botan (2.8.0-1) experimental; urgency=medium * New upstream release. * Library transition from libbotan-2-7 to libbotan-2-8 . * Fix ARM CPU detection (closes: #916970). * Overhaul copyright file (closes: #905335). * Update Standards-Version to 4.3.0 . [ Chris Lamb ] * Make the build reproducible (closes: #909476). -- Laszlo Boszormenyi (GCS) Tue, 01 Jan 2019 11:31:02 +0000 botan (2.7.0-1) experimental; urgency=medium * New upstream release. * Library transition from libbotan-2-5 to libbotan-2-7 . * Update Standards-Version to 4.1.5 . -- Laszlo Boszormenyi (GCS) Thu, 02 Aug 2018 04:52:07 +0000 botan (2.6.0-3) unstable; urgency=high * Backport security related patches: - CVE-2018-12435: memory-cache side-channel attack on ECDSA signatures (closes: #901619), - in ECC avoid using significant words to dispatch the mult algo. * Update Standards-Version to 4.1.4 . -- Laszlo Boszormenyi (GCS) Sat, 16 Jun 2018 05:58:09 +0000 botan (2.6.0-2) unstable; urgency=medium * Upload to Sid. -- Laszlo Boszormenyi (GCS) Sun, 29 Apr 2018 13:53:53 +0000 botan (2.6.0-1) experimental; urgency=medium * New upstream release. * Drop merged patches. * Library transition from libbotan-2-4 to libbotan-2-5 . * Add watch file. [ Helmut Grohne ] * Use multiarch paths (closes: #895447). -- Laszlo Boszormenyi (GCS) Wed, 11 Apr 2018 18:24:40 +0000 botan (2.4.0-6) unstable; urgency=high * Backport CVE-2018-9860 security fix for memory over read in TLS CBC decryption. * Sync with Ubuntu (closes: #895250). [ Matthias Klose ] * On armhf, configure with --cpu=armv7. Using the procinfo processor name is plain wrong. * Only pass --disable-neon to the configure when building on armel or armhf. * Don't hard code the vendor information. -- Laszlo Boszormenyi (GCS) Tue, 10 Apr 2018 17:55:33 +0000 botan (2.4.0-5) unstable; urgency=high * Backport security fix for invalid wildcard match (closes: #894648). * Backport fix for validation tests due to test certs had expired. -- Laszlo Boszormenyi (GCS) Tue, 03 Apr 2018 05:04:53 +0000 botan (2.4.0-4) unstable; urgency=medium * Backport upstream fix for disabling NEON (closes: #893372). * Backport upstream fix for Python3 module support (closes: #893730). * Make python3-botan architecture any. -- Laszlo Boszormenyi (GCS) Wed, 28 Mar 2018 16:41:55 +0000 botan (2.4.0-3) unstable; urgency=medium * Disable NEON intrinsics for ARM* builds. * Use upstream patch for Hurd FTBFS fix. * Really use the distribution-info switch for configure. -- Laszlo Boszormenyi (GCS) Fri, 16 Mar 2018 06:39:19 +0000 botan (2.4.0-2) unstable; urgency=medium * Don't remove .doctrees from the manual if it doesn't exist. * Don't specify parallel to debhelper. -- Laszlo Boszormenyi (GCS) Thu, 01 Mar 2018 22:23:25 +0000 botan (2.4.0-1) unstable; urgency=low * Initial upload (closes: #884130). -- Laszlo Boszormenyi (GCS) Mon, 08 Jan 2018 20:51:17 +0000