ubuntu/+source/libgcrypt20:applied/ubuntu/yakkety-devel

Last commit made on 2017-07-03
Get this branch:
git clone -b applied/ubuntu/yakkety-devel https://git.launchpad.net/ubuntu/+source/libgcrypt20
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/yakkety-devel
Repository:
lp:ubuntu/+source/libgcrypt20

Recent commits

4040a23... by Marc Deslauriers on 2017-07-03

Import patches-applied version 1.7.2-2ubuntu1.1 to applied/ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 47ae1b139934825f98a9ac8da35a065636e7a6b2
Unapplied parent: 45b5928817fc69503ebdb48b0691c2e9f4df762f

New changelog entries:
  * SECURITY UPDATE: full RSA key recovery via side-channel attack
    - debian/patches/CVE-2017-7526-1.patch: simplify loop in mpi/mpi-pow.c.
    - debian/patches/CVE-2017-7526-2.patch: use same computation for square
      and multiply in mpi/mpi-pow.c.
    - debian/patches/CVE-2017-7526-3.patch: add exponent blinding in
      cipher/rsa.c.
    - debian/patches/CVE-2017-7526-4.patch: add free to cipher/rsa.c.
    - debian/patches/CVE-2017-7526-5.patch: add free to cipher/rsa.c.
    - CVE-2017-7526
  * SECURITY UPDATE: EdDSA key recovery via side-channel attack
    - debian/patches/CVE-2017-9526-1.patch: store EdDSA session key in
      secure memory in cipher/ecc-eddsa.c.
    - debian/patches/CVE-2017-9526-2.patch: fix SEGV and stat calculation
      src/secmem.c.
    - CVE-2017-9526

45b5928... by Marc Deslauriers on 2017-07-03

[PATCH] rsa: More fix.

Gbp-Pq: CVE-2017-7526-5.patch.

9726de7... by Marc Deslauriers on 2017-07-03

[PATCH] rsa: Fix exponent blinding.

Gbp-Pq: CVE-2017-7526-4.patch.

71c1ca9... by Marc Deslauriers on 2017-07-03

[PATCH] rsa: Add exponent blinding.

Gbp-Pq: CVE-2017-7526-3.patch.

5219f86... by Marc Deslauriers on 2017-07-03

[PATCH] Same computation for square and multiply.

Gbp-Pq: CVE-2017-7526-2.patch.

990f00b... by Marc Deslauriers on 2017-07-03

[PATCH] mpi: Simplify mpi_powm.

Gbp-Pq: CVE-2017-7526-1.patch.

9305f25... by Marc Deslauriers on 2017-07-03

[PATCH] secmem: Fix SEGV and stat calculation.

Gbp-Pq: CVE-2017-9526-2.patch.

1114a4e... by Marc Deslauriers on 2017-07-03

[PATCH] ecc: Store EdDSA session key in secure memory.

Gbp-Pq: CVE-2017-9526-1.patch.

a7028b9... by Marc Deslauriers on 2017-07-03

[PATCH] random: Hash continuous areas in the csprng pool.

Gbp-Pq: CVE-2016-6313-2.patch.

fc2f459... by Marc Deslauriers on 2017-07-03

[PATCH] random: Improve the diagram showing the random mixing

Gbp-Pq: CVE-2016-6313-1.patch.