Format: 1.8 Date: Mon, 14 Jun 2021 09:18:47 -0400 Source: nettle Binary: libhogweed5 libnettle7 nettle-bin nettle-dev Architecture: s390x Version: 3.5.1+really3.5.1-2ubuntu0.2 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libhogweed5 - low level cryptographic library (public-key cryptos) libnettle7 - low level cryptographic library (symmetric and one-way cryptos) nettle-bin - low level cryptographic library (binary tools) nettle-dev - low level cryptographic library (development files) Changes: nettle (3.5.1+really3.5.1-2ubuntu0.2) focal-security; urgency=medium . * SECURITY UPDATE: crash in RSA decryption via manipulated ciphertext - debian/patches/CVE-2021-3580-1.patch: change _rsa_sec_compute_root_tr to take a fixed input size in rsa-decrypt-tr.c, rsa-internal.h, rsa-sec-decrypt.c, rsa-sign-tr.c, testsuite/rsa-encrypt-test.c. - debian/patches/CVE-2021-3580-2.patch: add input check to rsa_decrypt family of functions in rsa-decrypt-tr.c, rsa-decrypt.c, rsa-sec-decrypt.c, rsa.h, testsuite/rsa-encrypt-test.c. - CVE-2021-3580 Checksums-Sha1: f89dbfa00cd5044057dd629f27fdc241fed40d4e 200760 libhogweed5-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb 8de0ab89cded7f1a3d1d79f7d84c06631db33fa2 135156 libhogweed5_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb ae463f61dfc25f1cf5fb210e0e0b9806e2c1d84c 257288 libnettle7-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb afd55f5dc5a75eccadb62e687e621686e3489bbb 123432 libnettle7_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 0e0ce59b20f5d695443a6eb9c7fa4574683c1db6 170308 nettle-bin-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb 09b9bce66ab39ad497bb723aeb1e2a7b5dd7e3be 24448 nettle-bin_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb c114dc29581f88fe205bb11bccc5000d3a1d644b 993340 nettle-dev_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb deecbbbf873c5cdbc20329d320d956519448f278 7380 nettle_3.5.1+really3.5.1-2ubuntu0.2_s390x.buildinfo Checksums-Sha256: 6cda61d7e04595c648f948929abc632754bb5330c880bd125f208dc9dbe45f48 200760 libhogweed5-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb f1c3332fc771c9937c909f956946f9a83cb2efcb2d2068073769bac00c5d3208 135156 libhogweed5_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 9b2af2b5e3daaa1115552f09b8c07990c33a292ab5233677f0eee73e60de1156 257288 libnettle7-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb d41c5de9e056ca4fce2b0dcb6c2012e79ddbc55a7bc2ff5f57454600bdbbd263 123432 libnettle7_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 56a817728621c34a52569b54e04d05d7739a063b9f7044758c550a8ae2c8b7bb 170308 nettle-bin-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb 4349fce2520f478f2f057e4ac86a73f07e3c5ef9dc26bab7cf62c303496461c1 24448 nettle-bin_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 30d4495f6ec26e2b5e571a64873eb526d3c6c6995a8f6b73c311f9b1d1aa225f 993340 nettle-dev_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 52792fc157b510fc5467d7d9623c82ec362ba9a9d9adf89ee1c211b358d06e22 7380 nettle_3.5.1+really3.5.1-2ubuntu0.2_s390x.buildinfo Files: d13ed37aaed9229490645ef79e20db91 200760 debug optional libhogweed5-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb 6bd0d54700ff656aaff5cfc7ffc57269 135156 libs optional libhogweed5_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 927f4dac5e8fe81c954fffe82106056a 257288 debug optional libnettle7-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb 3a4dbaa731a1b668740348ecb8c7aac9 123432 libs optional libnettle7_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 76318c128d2f5c94edeb46e26d6522d7 170308 debug optional nettle-bin-dbgsym_3.5.1+really3.5.1-2ubuntu0.2_s390x.ddeb 09436112d0e1b1e78287ebd4e0b2e904 24448 misc optional nettle-bin_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb c9afefe4921d6bcee4e035f1db4900af 993340 libdevel optional nettle-dev_3.5.1+really3.5.1-2ubuntu0.2_s390x.deb 8af6c1d2a5fc3ffbb532af6837304ec3 7380 libs optional nettle_3.5.1+really3.5.1-2ubuntu0.2_s390x.buildinfo Original-Maintainer: Magnus Holmgren