nettle 3.2-1ubuntu0.16.04.2 source package in Ubuntu
Changelog
nettle (3.2-1ubuntu0.16.04.2) xenial-security; urgency=medium
* SECURITY UPDATE: Out of Bound memory access in signature verification
- debian/patches/CVE-2021-20305-1.patch: new functions
ecc_mod_mul_canonical and ecc_mod_sqr_canonical in
curve25519-eh-to-x.c, curve448-eh-to-x.c, ecc-eh-to-a.c,
ecc-internal.h, ecc-j-to-a.c, ecc-mod-arith.c, ecc-mul-m.c.
- debian/patches/CVE-2021-20305-2.patch: use ecc_mod_mul_canonical for
point comparison in eddsa-verify.c.
- debian/patches/CVE-2021-20305-3.patch: fix bug in ecc_ecdsa_verify in
ecc-ecdsa-verify.c, testsuite/ecdsa-sign-test.c.
- debian/patches/CVE-2021-20305-4.patch: ensure ecdsa_sign output is
canonically reduced in ecc-ecdsa-sign.c.
- debian/patches/CVE-2021-20305-6.patch: similar fix for eddsa in
eddsa-hash.c.
- debian/libhogweed4.symbols: added new symbols.
- CVE-2021-20305
-- Marc Deslauriers <email address hidden> Wed, 07 Apr 2021 10:17:48 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Xenial | updates | main | libs | |
| Xenial | security | main | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| nettle_3.2.orig.tar.gz | 1.8 MiB | ea4283def236413edab5a4cf9cf32adf540c8df1b9b67641cfc2302fca849d97 |
| nettle_3.2-1ubuntu0.16.04.2.debian.tar.xz | 24.6 KiB | 92e19bd3b902cbd7f6de0e930ba5d8bf423a12ab4494c8ba0aa5ebb16ede8cfd |
| nettle_3.2-1ubuntu0.16.04.2.dsc | 2.2 KiB | d30fd798451180ecc0e31fafdcadfeea28a6893a241076ede2731f42c29c30b9 |
Available diffs
Binary packages built by this source
- libhogweed4: low level cryptographic library (public-key cryptos)
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains the asymmetric cryptographic algorithms, which,
require the GNU multiple precision arithmetic library (libgmp) for
their large integer computations.
- libhogweed4-dbgsym: debug symbols for package libhogweed4
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains the asymmetric cryptographic algorithms, which,
require the GNU multiple precision arithmetic library (libgmp) for
their large integer computations.
- libnettle6: low level cryptographic library (symmetric and one-way cryptos)
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains the symmetric and one-way cryptographic
algorithms. To avoid having this package depend on libgmp, the
asymmetric cryptos reside in a separate library, libhogweed.
- libnettle6-dbgsym: debug symbols for package libnettle6
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains the symmetric and one-way cryptographic
algorithms. To avoid having this package depend on libgmp, the
asymmetric cryptos reside in a separate library, libhogweed.
- nettle-bin: low level cryptographic library (binary tools)
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains binary utilities that accompany the library:
.
- nettle-lfib-stream - generates a pseudo-random stream, using the Knuth
lfib (non-cryptographic) pseudo-random generator.
- sexp-conv - conversion tool for handling the different flavours of sexp
syntax.
- pkcs1-conv - converts PKCS#1 keys to sexp format.
- nettle-hash - command-line tool to compute message digests such as SHA-1.
- nettle-bin-dbgsym: debug symbols for package nettle-bin
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains binary utilities that accompany the library:
.
- nettle-lfib-stream - generates a pseudo-random stream, using the Knuth
lfib (non-cryptographic) pseudo-random generator.
- sexp-conv - conversion tool for handling the different flavours of sexp
syntax.
- pkcs1-conv - converts PKCS#1 keys to sexp format.
- nettle-hash - command-line tool to compute message digests such as SHA-1.
- nettle-dbg: low level cryptographic library (debugging symbols)
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
This package contains the debugging symbols for all binary packages.
- nettle-dev: low level cryptographic library (development files)
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains the development files (C headers and static libraries)
- nettle-dev-dbgsym: debug symbols for package nettle-dev
Nettle is a cryptographic library that is designed to fit easily in more or
less any context: In crypto toolkits for object-oriented languages (C++,
Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel
space.
.
It tries to solve a problem of providing a common set of cryptographic
algorithms for higher-level applications by implementing a
context-independent set of cryptographic algorithms. In that light, Nettle
doesn't do any memory allocation or I/O, it simply provides the
cryptographic algorithms for the application to use in any environment and
in any way it needs.
.
This package contains the development files (C headers and static libraries)
