gnupg (1.4.10-2ubuntu1.8) lucid-security; urgency=medium
* SECURITY UPDATE: sidechannel attack on Elgamal
- debian/patches/CVE-2014-3591.dpatch: use ciphertext blinding in
cipher/elgamal.c.
- CVE-2014-3591
* SECURITY UPDATE: sidechannel attack via timing variations in mpi_powm
libgcrypt11 (1.4.4-5ubuntu2.4) lucid-security; urgency=medium
* SECURITY UPDATE: sidechannel attack on Elgamal
- debian/patches/24-CVE-2014-3591.diff: use ciphertext blinding in
cipher/elgamal.c.
- CVE-2014-3591
* SECURITY UPDATE: sidechannel attack via timing variations in
libgcrypt11 (1.4.4-5ubuntu2.4) lucid-security; urgency=medium
* SECURITY UPDATE: sidechannel attack on Elgamal
- debian/patches/24-CVE-2014-3591.diff: use ciphertext blinding in
cipher/elgamal.c.
- CVE-2014-3591
* SECURITY UPDATE: sidechannel attack via timing variations in
gnupg (1.4.10-2ubuntu1.8) lucid-security; urgency=medium
* SECURITY UPDATE: sidechannel attack on Elgamal
- debian/patches/CVE-2014-3591.dpatch: use ciphertext blinding in
cipher/elgamal.c.
- CVE-2014-3591
* SECURITY UPDATE: sidechannel attack via timing variations in mpi_powm
binutils (2.20.1-3ubuntu7.3) lucid-proposed; urgency=medium
* gold: Add -fuse-ld= for GCC linker option compatibility. LP: #1438244.
Date: Mon, 30 Mar 2015 17:08:48 +0200
Changed-By: Matthias Klose d...@ubuntu.com
Maintainer: Ubuntu Developers ubuntu-devel-disc...@lists.ubuntu.com
tiff (3.9.2-2ubuntu0.16) lucid-security; urgency=medium
* SECURITY REGRESSION: regression when saving TIFF files with compression
predictor (LP: #1439186)
- debian/patches/CVE-2014-8128-5.patch: disable until proper upstream
fix is available.
Date: 2015-04-01
tiff (3.9.2-2ubuntu0.16) lucid-security; urgency=medium
* SECURITY REGRESSION: regression when saving TIFF files with compression
predictor (LP: #1439186)
- debian/patches/CVE-2014-8128-5.patch: disable until proper upstream
fix is available.
Date: 2015-04-01
