[Git][security-tracker-team/security-tracker][master] LTS: Mark CVE-2021-40529 as ignored for stretch
Anton Gladky (@gladk)
gladk at debian.org
Thu Oct 28 19:50:32 BST 2021
Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker
Commits:
35f58eef by Anton Gladky at 2021-10-28T20:50:13+02:00
LTS: Mark CVE-2021-40529 as ignored for stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6986,6 +6986,7 @@ CVE-2021-40530 (The ElGamal implementation in Crypto++ through 8.5 allows plaint
CVE-2021-40529 (The ElGamal implementation in Botan through 2.18.1, as used in Thunder ...)
- botan 2.18.1+dfsg-3 (bug #993840)
- botan1.10 <removed>
+ [stretch] - botan1.10 <ignored> (Affected function encrypt(...) has changed drastically. Backport is too instrusive to backport)
NOTE: https://eprint.iacr.org/2021/923
NOTE: https://github.com/randombit/botan/pull/2790
NOTE: Fixed by: https://github.com/randombit/botan/commit/9a23e4e3bc3966340531f2ff608fa9d33b5185a2
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35f58eef4348fa9f99a513e24033c2d2818c4910
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35f58eef4348fa9f99a513e24033c2d2818c4910
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211028/2246b4de/attachment.htm>
More information about the debian-security-tracker-commits
mailing list