Build Update for openssl/openssl ------------------------------------- Build: #4363 Status: Still Failing
Duration: 19 minutes and 6 seconds Commit: 621eaf4 (OpenSSL_1_0_2-stable) Author: Cesar Pereida Message: Fix DSA, preserve BN_FLG_CONSTTIME Operations in the DSA signing algorithm should run in constant time in order to avoid side channel attacks. A flaw in the OpenSSL DSA implementation means that a non-constant time codepath is followed for certain operations. This has been demonstrated through a cache-timing attack to be sufficient for an attacker to recover the private DSA key. CVE-2016-2178 Reviewed-by: Richard Levitte <levi...@openssl.org> Reviewed-by: Matt Caswell <m...@openssl.org> View the changeset: https://github.com/openssl/openssl/compare/46bad91986eb...621eaf49a289 View the full build log and details: https://travis-ci.org/openssl/openssl/builds/135556831 -- You can configure recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications
_____ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
