-
libgcrypt20 (1.8.7-5ubuntu2) impish; urgency=medium
* SECURITY UPDATE: lack of exponent blinding in ElGamal encryption
- debian/patches/CVE-2021-33560.patch: harden ElGamal by introducing
exponent blinding too in cipher/elgamal.c.
- CVE-2021-33560
* SECURITY UPDATE: incorrect support of smaller K
- debian/patches/CVE-2021-40528.patch: fix ElGamal encryption for other
implementations in cipher/elgamal.c.
- CVE-2021-40528
-- Marc Deslauriers <email address hidden> Thu, 16 Sep 2021 07:36:50 -0400
-
libgcrypt20 (1.8.7-5ubuntu1) impish; urgency=low
* Merge from Debian unstable. Remaining changes:
- Disable the library reading /proc/sys/crypto/fips_enabled file
and going into FIPS mode. libgcrypt is not a FIPS certified library.
(LP 1748310)
- Enable CET.
libgcrypt20 (1.8.7-5) unstable; urgency=medium
* Pull fix ECC decyryption regression (caused by
30_08-ecc-Check-the-input-length-for-the-point.patch) from
LIBGCRYPT-1.8-BRANCH. Closes: #987956
libgcrypt20 (1.8.7-4) unstable; urgency=medium
* Update from LIBGCRYPT-1.8-BRANCH:
+ 30_07-Fix-previous-commit.patch
+ 30_08-ecc-Check-the-input-length-for-the-point.patch
libgcrypt20 (1.8.7-3) unstable; urgency=medium
* Update from LIBGCRYPT-1.8-BRANCH:
+ 30_01-Post-release-updates.patch
+ 30_02-tests-Put-a-work-around-to-tests-random-for-macOS.patch
+ 30_03-ecc-Add-checking-key-for-ECDSA.patch
+ 30_04-Fix-ubsan-warnings-for-i386-build.patch
+ 30_05-Add-handling-for-Og-with-O-flag-munging.patch
+ 30_06-Make-sure-the-grcy_get_config-string-is-always-null-.patch
-- Ćukasz 'sil2100' Zemczak <email address hidden> Mon, 10 May 2021 17:13:14 +0200
-
libgcrypt20 (1.8.7-2ubuntu2) hirsute; urgency=medium
* No-change rebuild to drop the udeb package.
-- Matthias Klose <email address hidden> Mon, 22 Feb 2021 10:34:38 +0100
