FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

botan -- multiple vulnerabilities

Affected packages
botan110 < 1.10.13

Details

VuXML ID ac0900df-31d0-11e6-8e82-002590263bf5
Discovery 2016-04-28
Entry 2016-06-14

Jack Lloyd reports:

Botan 1.10.13 has been released backporting some side channel protections for ECDSA signatures (CVE-2016-2849) and PKCS #1 RSA decryption (CVE-2015-7827).

References

CVE Name CVE-2015-7827
CVE Name CVE-2016-2849
URL https://lists.randombit.net/pipermail/botan-devel/2016-April/002101.html