botan (2.9.0-2) unstable; urgency=medium
* Upload to Sid.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Sun, 13 Jan 2019 18:56:06 +0000
botan (2.9.0-1) experimental; urgency=medium
* New upstream release.
* Fix CVE-2018-20187: address a side channel during ECC key generation,
which used an unblinded Montgomery ladder (closes: #918732).
* Library transition from libbotan-2-8 to libbotan-2-9 .
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Sat, 12 Jan 2019 13:16:11 +0000
botan (2.8.0-3) unstable; urgency=medium
* Fix architecture independent build.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Tue, 08 Jan 2019 01:07:20 +0000
botan (2.8.0-2) unstable; urgency=medium
* Upload to Sid.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Mon, 07 Jan 2019 20:01:19 +0000
botan (2.8.0-1) experimental; urgency=medium
* New upstream release.
* Library transition from libbotan-2-7 to libbotan-2-8 .
* Fix ARM CPU detection (closes: #916970).
* Overhaul copyright file (closes: #905335).
* Update Standards-Version to 4.3.0 .
[ Chris Lamb <lamby@debian.org> ]
* Make the build reproducible (closes: #909476).
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Tue, 01 Jan 2019 11:31:02 +0000
botan (2.7.0-1) experimental; urgency=medium
* New upstream release.
* Library transition from libbotan-2-5 to libbotan-2-7 .
* Update Standards-Version to 4.1.5 .
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Thu, 02 Aug 2018 04:52:07 +0000
botan (2.6.0-3) unstable; urgency=high
* Backport security related patches:
- CVE-2018-12435: memory-cache side-channel attack on ECDSA signatures
(closes: #901619),
- in ECC avoid using significant words to dispatch the mult algo.
* Update Standards-Version to 4.1.4 .
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Sat, 16 Jun 2018 05:58:09 +0000
botan (2.6.0-2) unstable; urgency=medium
* Upload to Sid.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Sun, 29 Apr 2018 13:53:53 +0000
botan (2.6.0-1) experimental; urgency=medium
* New upstream release.
* Drop merged patches.
* Library transition from libbotan-2-4 to libbotan-2-5 .
* Add watch file.
[ Helmut Grohne <helmut@subdivi.de> ]
* Use multiarch paths (closes: #895447).
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Wed, 11 Apr 2018 18:24:40 +0000
botan (2.4.0-6) unstable; urgency=high
* Backport CVE-2018-9860 security fix for memory over read in TLS CBC
decryption.
* Sync with Ubuntu (closes: #895250).
[ Matthias Klose <doko@ubuntu.com> ]
* On armhf, configure with --cpu=armv7. Using the procinfo processor name
is plain wrong.
* Only pass --disable-neon to the configure when building on armel or armhf.
* Don't hard code the vendor information.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Tue, 10 Apr 2018 17:55:33 +0000
botan (2.4.0-5) unstable; urgency=high
* Backport security fix for invalid wildcard match (closes: #894648).
* Backport fix for validation tests due to test certs had expired.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Tue, 03 Apr 2018 05:04:53 +0000
botan (2.4.0-4) unstable; urgency=medium
* Backport upstream fix for disabling NEON (closes: #893372).
* Backport upstream fix for Python3 module support (closes: #893730).
* Make python3-botan architecture any.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Wed, 28 Mar 2018 16:41:55 +0000
botan (2.4.0-3) unstable; urgency=medium
* Disable NEON intrinsics for ARM* builds.
* Use upstream patch for Hurd FTBFS fix.
* Really use the distribution-info switch for configure.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Fri, 16 Mar 2018 06:39:19 +0000
botan (2.4.0-2) unstable; urgency=medium
* Don't remove .doctrees from the manual if it doesn't exist.
* Don't specify parallel to debhelper.
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Thu, 01 Mar 2018 22:23:25 +0000
botan (2.4.0-1) unstable; urgency=low
* Initial upload (closes: #884130).
-- Laszlo Boszormenyi (GCS) <gcs@debian.org> Mon, 08 Jan 2018 20:51:17 +0000