mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-12-12 00:33:10 +00:00
3fd3ce5c7d
Changelog: https://botan.randombit.net/news.html#version-2-19-5-2024-07-08
CVEs fixed:
- CVE-2024-34702: Fix a DoS caused by excessive name constraints. (GH #4187)
- CVE-2024-39312: Fix a name constraint processing error, where if permitted
and excluded rules both applied to a certificate, only the permitted rules would be checked. (GH #4187)
Other changes:
- Fix a crash in OCB
The authors of botan also added the following to the changelog:
"A reminder that Botan2 reaches end of life at the end of 2024"
Signed-off-by: Markus Theil <theil.markus@gmail.com>
(cherry picked from commit
|
||
---|---|---|
.. | ||
2.0.nix | ||
3.0.nix | ||
botan3-macos.patch | ||
generic.nix |