Package: python-crypto / 2.6-4+deb7u3

Metadata

Package Version Patches format
python-crypto 2.6-4+deb7u3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
dont drop g.patch | (download)

setup.py | 5 0 + 5 - 0 !
1 file changed, 5 deletions(-)

 
 don't drop -g and optimization values from the call to gcc
 The binaries will be stripped later anyway and CFLAGS contains the correct
 flags.
fix unresolved reference size.patch | (download)

src/_fastmath.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 
 fix build issues if built without optimization.
 If built with -O0 the call to size won't be inlined and thus _fastmath cannot
 be loaded due to an unresolved symbol.
fix epydoc ignore.patch | (download)

Doc/epydoc-config | 3 1 + 2 - 0 !
1 file changed, 1 insertion(+), 2 deletions(-)

 
 fix exclude-introspect stanza in epydoc-config
fix cipher iv documentation.patch | (download)

lib/Crypto/Cipher/AES.py | 3 1 + 2 - 0 !
lib/Crypto/Cipher/ARC2.py | 3 1 + 2 - 0 !
lib/Crypto/Cipher/Blowfish.py | 3 1 + 2 - 0 !
lib/Crypto/Cipher/CAST.py | 3 1 + 2 - 0 !
lib/Crypto/Cipher/DES.py | 3 1 + 2 - 0 !
lib/Crypto/Cipher/DES3.py | 3 1 + 2 - 0 !
6 files changed, 6 insertions(+), 12 deletions(-)

 
 update doctring to document actual behavior.
reenable redefined tests.patch | (download)

lib/Crypto/SelfTest/Cipher/test_pkcs1_oaep.py | 11 6 + 5 - 0 !
lib/Crypto/SelfTest/PublicKey/test_importKey.py | 6 3 + 3 - 0 !
lib/Crypto/SelfTest/Util/test_asn1.py | 2 1 + 1 - 0 !
3 files changed, 10 insertions(+), 9 deletions(-)

 
 re-enable redefined tests.
 The test suite contains tests that are disabled because they have the same name
 as other tests. Renaming them enables them again.
 .
 PKCS1_OAEP_Tests.testEncryptDecrypt1 is updated to work with the new interface
 of PKCS1_OAEP.
fix py3 errors.patch | (download)

lib/Crypto/PublicKey/RSA.py | 6 3 + 3 - 0 !
lib/Crypto/SelfTest/PublicKey/test_importKey.py | 2 1 + 1 - 0 !
2 files changed, 4 insertions(+), 4 deletions(-)

 
 fix python 3 erros uncovered by reenable-redefined-tests.patch.
fix except shadows builtin.patch | (download)

lib/Crypto/PublicKey/RSA.py | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 
 fix 'except shadows builtin' error.
 Thanks to lintian4python for finding it.
CVE 2013 1445.patch | (download)

lib/Crypto/Random/Fortuna/FortunaAccumulator.py | 9 9 + 0 - 0 !
lib/Crypto/Random/_UserFriendlyRNG.py | 15 15 + 0 - 0 !
lib/Crypto/SelfTest/Random/__init__.py | 1 1 + 0 - 0 !
lib/Crypto/SelfTest/Random/test__UserFriendlyRNG.py | 178 178 + 0 - 0 !
4 files changed, 203 insertions(+)

 
 fix cve-2013-1445
 In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator
 (PRNG) exhibits a race condition that may cause it to generate the same
 'random' output in multiple processes that are forked from each other.
 Depending on the application, this could reveal sensitive information or
 cryptographic keys to remote attackers.
 .
 An application may be affected if, within 100 milliseconds, it performs the
 following steps:
 .
  1. Read from the Crypto.Random PRNG, causing an internal reseed;
  2. Fork the process and invoke Crypto.Random.atfork() in the child;