1
Candidate: CVE-2016-2849
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2849
5
http://botan.randombit.net/security.html
7
Botan before 1.10.13 and 1.11.x before 1.11.29 do not use a constant-time
8
algorithm to perform a modular inverse on the signature nonce k, which
9
might allow remote attackers to obtain ECDSA secret keys via a timing
14
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=822698
20
upstream_botan1.10: released (1.10.13-1)
21
precise_botan1.10: ignored (reached end-of-life)
22
precise/esm_botan1.10: DNE (precise was needed)
23
trusty_botan1.10: released (1.10.5-1+deb7u1ubuntu0.14.04.1)
24
vivid/stable-phone-overlay_botan1.10: DNE
25
vivid/ubuntu-core_botan1.10: DNE
26
wily_botan1.10: ignored (reached end-of-life)
27
xenial_botan1.10: needed
28
yakkety_botan1.10: ignored (reached end-of-life)
29
zesty_botan1.10: ignored (reached end-of-life)
30
artful_botan1.10: not-affected (1.10.13-1)
31
bionic_botan1.10: not-affected (1.10.13-1)
32
devel_botan1.10: not-affected (1.10.13-1)