Skip to content

Changelog botan (2.12.1-2build1)

2020

botan (2.12.1-2build1) focal; urgency=medium

   * No-change rebuild for libgcc-s1 package name change.

2019

botan (2.12.1-2) unstable; urgency=medium

   * Upload to Sid.

botan (2.12.1-1) experimental; urgency=medium

   * New upstream release.
   * Patch package to use Python 3 (closes: #936230).

botan (2.12.0-1) experimental; urgency=medium

   * New upstream release.
   * Library transition from libbotan-2-11 to libbotan-2-12 .
   * Update Python packaging bits.
   * Add cryptographic signature verification to watch file.
   * Update Standards-Version to 4.4.1 .

botan (2.11.0-1) experimental; urgency=medium

   * New upstream release.
   * Library transition from libbotan-2-9 to libbotan-2-11 .

botan (2.9.0-2) unstable; urgency=medium

   * Upload to Sid.

botan (2.9.0-1) experimental; urgency=medium

   * New upstream release.
   * Fix CVE-2018-20187: address a side channel during ECC key generation,
     which used an unblinded Montgomery ladder (closes: #918732).
   * Library transition from libbotan-2-8 to libbotan-2-9 .

botan (2.8.0-3) unstable; urgency=medium

   * Fix architecture independent build.

botan (2.8.0-2) unstable; urgency=medium

   * Upload to Sid.

botan (2.8.0-1) experimental; urgency=medium

   * New upstream release.
   * Library transition from libbotan-2-7 to libbotan-2-8 .
   * Fix ARM CPU detection (closes: #916970).
   * Overhaul copyright file (closes: #905335).
   * Update Standards-Version to 4.3.0 .
 
   [ Chris Lamb <lamby@debian.org> ]
   * Make the build reproducible (closes: #909476).

2018

botan (2.7.0-1) experimental; urgency=medium

   * New upstream release.
   * Library transition from libbotan-2-5 to libbotan-2-7 .
   * Update Standards-Version to 4.1.5 .

botan (2.6.0-3) unstable; urgency=high

   * Backport security related patches:
     - CVE-2018-12435: memory-cache side-channel attack on ECDSA signatures
       (closes: #901619),
     - in ECC avoid using significant words to dispatch the mult algo.
   * Update Standards-Version to 4.1.4 .

botan (2.6.0-2) unstable; urgency=medium

   * Upload to Sid.

botan (2.6.0-1) experimental; urgency=medium

   * New upstream release.
   * Drop merged patches.
   * Library transition from libbotan-2-4 to libbotan-2-5 .
   * Add watch file.
 
   [ Helmut Grohne <helmut@subdivi.de> ]
   * Use multiarch paths (closes: #895447).

botan (2.4.0-6) unstable; urgency=high

   * Backport CVE-2018-9860 security fix for memory over read in TLS CBC
     decryption.
   * Sync with Ubuntu (closes: #895250).
 
   [ Matthias Klose <doko@ubuntu.com> ]
   * On armhf, configure with --cpu=armv7. Using the procinfo processor name
     is plain wrong.
   * Only pass --disable-neon to the configure when building on armel or armhf.
   * Don't hard code the vendor information.

botan (2.4.0-5) unstable; urgency=high

   * Backport security fix for invalid wildcard match (closes: #894648).
   * Backport fix for validation tests due to test certs had expired.

botan (2.4.0-4) unstable; urgency=medium

   * Backport upstream fix for disabling NEON (closes: #893372).
   * Backport upstream fix for Python3 module support (closes: #893730).
   * Make python3-botan architecture any.

botan (2.4.0-3) unstable; urgency=medium

   * Disable NEON intrinsics for ARM* builds.
   * Use upstream patch for Hurd FTBFS fix.
   * Really use the distribution-info switch for configure.

botan (2.4.0-2) unstable; urgency=medium

   * Don't remove .doctrees from the manual if it doesn't exist.
   * Don't specify parallel to debhelper.

botan (2.4.0-1) unstable; urgency=low

   * Initial upload (closes: #884130).