Package: botan | Debian Sources

Package: botan / 2.19.3+dfsg-1+deb12u1

Metadata

Package	Version	Patches format
botan	2.19.3+dfsg-1+deb12u1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
readdir_hurd.patch \| (download)	src/build-data/os/hurd.txt \| 1 1 + 0 - 0 ! 1 file changed, 1 insertion(+)	hurd ftbfs fix Add readdir possibility to Hurd architecture.
use_python3.patch \| (download)	configure.py \| 2 1 + 1 - 0 ! src/python/botan2.py \| 2 1 + 1 - 0 ! src/scripts/bench.py \| 2 1 + 1 - 0 ! src/scripts/build_docs.py \| 2 1 + 1 - 0 ! src/scripts/ci_build.py \| 2 1 + 1 - 0 ! src/scripts/cleanup.py \| 2 1 + 1 - 0 ! src/scripts/create_corpus_zip.py \| 2 1 + 1 - 0 ! src/scripts/dist.py \| 2 1 + 1 - 0 ! src/scripts/ffi_decls.py \| 2 1 + 1 - 0 ! src/scripts/install.py \| 2 1 + 1 - 0 ! src/scripts/macro_checks.py \| 2 1 + 1 - 0 ! src/scripts/oids.py \| 2 1 + 1 - 0 ! src/scripts/run_tls_attacker.py \| 2 1 + 1 - 0 ! src/scripts/run_tls_fuzzer.py \| 2 1 + 1 - 0 ! src/scripts/show_dependencies.py \| 2 1 + 1 - 0 ! src/scripts/test_all_configs.py \| 2 1 + 1 - 0 ! src/scripts/test_cli_crypt.py \| 2 1 + 1 - 0 ! src/scripts/test_fuzzers.py \| 2 1 + 1 - 0 ! src/scripts/test_python.py \| 2 1 + 1 - 0 ! src/scripts/tls_scanner/tls_scanner.py \| 2 1 + 1 - 0 ! src/scripts/tls_suite_info.py \| 2 1 + 1 - 0 ! src/scripts/website.py \| 2 1 + 1 - 0 ! 22 files changed, 22 insertions(+), 22 deletions(-)	use python 3 everywhere Execute python3 binary instead of simple python which is the 2.x version.
CVE 2024 34702.patch \| (download)	src/lib/x509/asn1_alt_name.cpp \| 4 4 + 0 - 0 ! src/lib/x509/name_constraint.cpp \| 313 302 + 11 - 0 ! src/lib/x509/pkix_types.h \| 37 30 + 7 - 0 ! src/lib/x509/x509_ext.cpp \| 82 34 + 48 - 0 ! src/lib/x509/x509cert.cpp \| 30 25 + 5 - 0 ! src/python/botan2.py \| 2 2 + 0 - 0 ! src/scripts/test_python.py \| 3 0 + 3 - 0 ! src/tests/test_name_constraint.cpp \| 10 5 + 5 - 0 ! 8 files changed, 402 insertions(+), 79 deletions(-)	[patch] address various name constraint bugs
CVE 2024 34703.patch \| (download)	src/lib/pubkey/ec_group/ec_group.cpp \| 7 5 + 2 - 0 ! 1 file changed, 5 insertions(+), 2 deletions(-)	[patch] when decoding an arbitrary elliptic curve, set an upper bound on length
CVE 2024 39312.patch \| (download)	src/lib/x509/x509path.cpp \| 97 64 + 33 - 0 ! 1 file changed, 64 insertions(+), 33 deletions(-)	[patch] during x.509 verification, first check the signatures
CVE 2024 50382 CVE 2024 50383.patch \| (download)	src/lib/utils/donna128.h \| 5 3 + 2 - 0 ! src/lib/utils/ghash/ghash.cpp \| 2 1 + 1 - 0 ! 2 files changed, 4 insertions(+), 3 deletions(-)	[patch] add more value barriers to avoid compiler induced side channels

1