Fedora 29: 2019-e0f5a82082 Urgent: Botan2 ECC Vulnerability Alert

Botan is a BSD-licensed crypto library written in C++. It provides a

wide variety of basic cryptographic algorithms, X.509 certificates and

CRLs, PKCS \#10 certificate requests, a filter/pipe message processing

system, and a wide variety of other features, all written in portable

C++. The API reference, tutorial, and examples may help impart the

flavor of the library. This is the current stable release branch 2.x

of Botan.

Update to 2.9.0 including security fix for CVE-2018-20187

* Sat Feb 9 2019 Benjamin Kircher - 2.9.0-1

- Update to 2.9.0

* Thu Jan 31 2019 Fedora Release Engineering - 2.8.0-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild

* Mon Oct 1 2018 Benjamin Kircher - 2.8.0-1

- Update to 2.8.0

[ 1 ] Bug #1664598 - CVE-2018-20187 botan: Side channel possible during ECC generation

https://bugzilla.redhat.com/show_bug.cgi?id=1664598

su -c 'dnf upgrade --advisory FEDORA-2019-e0f5a82082' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/