| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: libbotan-3-7 | Distribution: openSUSE Tumbleweed |
| Version: 3.7.1 | Vendor: openSUSE |
| Release: 1.1 | Build date: Wed Mar 12 10:02:29 2025 |
| Group: System/Libraries | Build host: reproducible |
| Size: 8960962 | Source RPM: Botan-3.7.1-1.1.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: https://botan.randombit.net | |
| Summary: A C++ Crypto Library | |
Botan is a C++ library that provides support for many common cryptographic operations, including encryption, authentication, and X.509v3 certificates and CRLs. A wide variety of algorithms is supported, including RSA, DSA, DES, AES, MD5, and SHA-1.
BSD-2-Clause
* Wed Mar 12 2025 Angel Yankov <angel.yankov@suse.com>
- Botan 3.7.1, latest stable release
* Revert a change that prevented build.h from being usable from C applications.
* Add post-quantum scheme Classic McEliece
* In TLS enable the hybrid x25519/ML-KEM-768 post quantum secure key exchange by default for clients and servers.
* Support for the pre-standard Kyber-r3 key exchange has been removed from TLS
* In TLS add support for “pure” ML-KEM key exchange, in addition to the existing hybrid ML-KEM + EC suites.
* Add new EC key constructors
* Internal EC optimizations and improvements
* Fix a regression introduced in 3.6.0 which would cause many P-521 secret keys to be rejected as invalid due to not having the expected length.
* Fix a bug preventing parsing of OCSP responses containing more than one pinned certificate
* TPM 2.0 improvements
* Fix a build issue when compiling with MSVC on ARM
* Find full changelog at: https://botan.randombit.net/news.html
* Tue Nov 05 2024 Stephan Hemeier <Sauerlandlinux@gmx.de>
- Botan 3.6.1, the latest stable release of the Botan 3 series
* Notice: Botan 3.7.0 will remove support for the currently supported experimental Kyber r3 TLS ciphersuites, leaving only the standardized ML-KEM suites. (GH #4407 #4403)
* Fix a bug in x86 CPUID detection introduced in 3.6.0 which would cause crashes on systems which have BMI1 but not BMI2. (GH #4402 #4401)
* Fix a bug in SLH-DSA signing, which did not default to the FIPS required randomized variant. (GH #4398)
* Modify how elliptic curve blinding is performed, reducing the number of self-additions that may occur during multiplication. (GH #4408)
* In speed command line utility, also iterate keygen several times. (GH #4381)
* Fri Oct 25 2024 Angel Yankov <angel.yankov@suse.com>
- Botan 3.6.0, the latest stable release of the Botan 3 series
* Fully integrate and further optimize the new ECC library first introduced in 3.5.0. For common curves, operations are 2 to 3 times faster. This also introduces a new API for low level EC operations, such a point multiplication, using EC_Scalar and EC_AffinePoint types
* Add support for AVX2-VAES instructions
* Add support for new ECC curves
* Fix: CVE-2024-50382
For full changelog, see: https://botan.randombit.net/news.html#version-3-6-0-2024-10-21
* Tue Jul 30 2024 Andreas Stieger <andreas.stieger@gmx.de>
- Botan 3.5.0, the latest stable release of the Botan 3 series
* TLS 1.3 supported
* large header cleanup compared to v2
* start support of Post Quantum Crypto
* removed: CAST-256, MISTY1, Kasumi, DESX, XTEA, PBKDF1, MCEIES,
CBC-MAC, Tiger, CECPQ1, and NewHope
- The legacy Botan 2 series moved to Botan2 source package. It is
EOL at the end of 2024.
* Mon Jul 15 2024 Angel Yankov <angel.yankov@suse.com>
- Update to 2.19.5:
* Fix multiple Denial of service attacks due to X.509 cert processing:
* CVE-2024-34702 - bsc#1227238
* CVE-2024-34703 - bsc#1227607
* CVE-2024-39312 - bsc#1227608
* Fix a crash in OCB
* Fix a test failure in compression with certain versions of zlib
* Fix some iterator debugging errors in TLS CBC decryption.
* Avoid a miscompilation in ARIA when using XCode 14
* Fri Nov 17 2023 Marcus Meissner <meissner@suse.com>
- remove botan binary (moves to Botan3)
* Thu Nov 17 2022 Jason Sikes <jsikes@suse.com>
- Update to 2.19.3:
* validate that an embedded certificate was issued by the end-entity
issuing certificate authority when checking OCSP responses.
* CVE-2022-43705
* bsc#1205509
* Wed Jun 08 2022 Dirk Müller <dmueller@suse.com>
- update to 2.19.2:
* Add support for parallel computation in Argon2
* Add SSSE3 implementation of Argon2
* The OpenSSL provider was incompatible with OpenSSL 3.0.
It has been removed
* Avoid using reserve in secure_vector appending, which caused
a performance problem
* Fix TLS::Text_Policy behavior when X25519 is disabled
at build time
* Fix several warnings from Clang
* Sun Jan 23 2022 Andreas Stieger <andreas.stieger@gmx.de>
- update to 2.19.1:
* Add a forward error correction code compatible with the zfec
library
* Wed Nov 24 2021 Dirk Müller <dmueller@suse.com>
- update to 2.18.2:
* Avoid using short exponents when encrypting in ElGamal, as some PGP
implementations generate keys with parameters that are weak when
short exponents are used CVE-2021-40529 boo#1190244
* Fix a low risk OAEP decryption side channel
* Work around a miscompilation of SHA-3 caused by a bug in Clang 12
and XCode 13
* Remove support in OpenSSL provider for algorithms which are
disabled by default in OpenSSL 3.0
* Add CI based on GitHub actions to replace Travis CI
* Fix the online OCSP test, as the certificate involved had expired.
* Fix some test failures induced by the expiration of the trust root
"DST Root CA X3"
/usr/lib/libbotan-3.so.7 /usr/lib/libbotan-3.so.7.7.1 /usr/share/licenses/libbotan-3-7 /usr/share/licenses/libbotan-3-7/license.txt
Generated by rpm2html 1.8.1
Fabrice Bellet, Sat Mar 22 23:42:21 2025