Created by Ubuntu Package Importer on 2013-08-01 and last modified on 2016-08-17
Get this branch:
bzr branch lp:ubuntu/precise-security/libgcrypt11
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Ubuntu branches
Review team:
Ubuntu Development Team

Recent revisions

37. By Marc Deslauriers on 2016-08-17

* SECURITY UPDATE: random number generator prediction
  - debian/patches/CVE-2016-6313-1.patch: improve the diagram showing the
    random mixing in random/random-csprng.c.
  - debian/patches/CVE-2016-6313-2.patch: hash continuous areas in the
    csprng pool in random/random-csprng.c.
  - CVE-2016-6313

36. By Marc Deslauriers on 2016-02-10

* SECURITY UPDATE: side-channel attack on ECDH
  - debian/patches/CVE-2015-7511.patch: perform input validation in
    cipher/ecc.c, src/mpi.h, use constant-time multiplication in
  - CVE-2015-7511
* debian/patches/fix_ec_point_addition.patch: fix addition of EC points
  in mpi/ec.c.

35. By Marc Deslauriers on 2015-03-26

* SECURITY UPDATE: sidechannel attack on Elgamal
  - debian/patches/CVE-2014-3591.patch: use ciphertext blinding in
  - CVE-2014-3591
* SECURITY UPDATE: sidechannel attack via timing variations in mpi_powm
  - debian/patches/CVE-2015-0837.patch: avoid timing variations in
    mpi/mpi-pow.c, mpi/mpiutil.c, src/mpi.h.
  - CVE-2015-0837

34. By Marc Deslauriers on 2014-08-19

* SECURITY UPDATE: side-channel attack on Elgamal encryption subkeys
  - debian/patches/add_gcry_divide_by_zero.patch: replace deliberate
    division by zero with new _gcry_divide_by_zero().
  - debian/patches/CVE-2014-5270.patch: use sliding window method for
    exponentiation algorithm in mpi/mpi-pow.c.
  - CVE-2014-5270

33. By Seth Arnold on 2013-07-30

* SECURITY UPDATE: The path of execution in an exponentiation function may
  depend upon secret key data, allowing a local attacker to determine the
  contents of the secret key through a side-channel attack.
  - debian/patches/CVE-2013-4242.diff: always perform the mpi_mul for
    exponents in secure memory. Based on upstream patch.
  - CVE-2013-4242

32. By Andreas Metzler <email address hidden> on 2011-09-01

* Upload to unstable.
* Drop 20_workaroundarmgcc.diff (1.4.6/unstable). It seems to be unnecessary
  with 1.5.0.
* libgcrypt11 Breaks gnupg2|gpgsm (<< 2.0.17-2ubuntu2) and libgnutls26 (<<
  2.12.7-3). See https://bugs.launchpad.net/bugs/815190 and

31. By Andreas Metzler <email address hidden> on 2011-07-02

* Merge multi-arch changes (1.4.6-6 and 1.4.6-7), drop libtool la file.
* Drop CFLAGS += -Wall again, it has become unnecessary.
* New upstream version.
* Bump shlibs

30. By Steve Langasek on 2011-05-20

* Merge from Debian unstable, remaining changes:
  - build for multiarch.

29. By Steve Langasek on 2011-03-22

releasing version 1.4.6-4ubuntu2

28. By Steve Langasek on 2011-03-22

Move libgcrypt.so into /usr/lib/$(DEB_HOST_MULTIARCH) where it belongs.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.