Viewing all changes in revision 22.
- Committer: Package Import Robot
- Date: 2013-07-30 18:05:18 UTC
- mfrom: (21.1.1 lucid-proposed)
- Revision ID: package-import@ubuntu.com-20130730180518-m14v2bxqfq6hoe82
* SECURITY UPDATE: The path of execution in an exponentiation function may
depend upon secret key data, allowing a local attacker to determine the
contents of the secret key through a side-channel attack.
- debian/patches/21-CVE-2013-4242.diff: always perform the mpi_mul for
exponents in secure memory. Based on upstream patch.
- CVE-2013-4242
depend upon secret key data, allowing a local attacker to determine the
contents of the secret key through a side-channel attack.
- debian/patches/21-CVE-2013-4242.diff: always perform the mpi_mul for
exponents in secure memory. Based on upstream patch.
- CVE-2013-4242
- files added:
- debian/patches/21-CVE-2013-4242.diff
- files modified:
- debian/changelog
expand all
collapse all
added
removed
