rpms/hmaccalc/devel .cvsignore, 1.5, 1.6 hmaccalc.spec, 1.5, 1.6 sources, 1.5, 1.6

Nalin Dahyabhai nalin at fedoraproject.org
Thu Sep 3 18:58:46 UTC 2009 

Author: nalin

Update of /cvs/extras/rpms/hmaccalc/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv7241

Modified Files:
	.cvsignore hmaccalc.spec sources 
Log Message:
update to 0.9.10 to add a minimum truncation length


Index: .cvsignore
===================================================================
RCS file: /cvs/extras/rpms/hmaccalc/devel/.cvsignore,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -p -r1.5 -r1.6
--- .cvsignore	22 Jul 2009 22:11:34 -0000	1.5
+++ .cvsignore	3 Sep 2009 18:58:46 -0000	1.6
@@ -2,3 +2,4 @@ hmaccalc-0.9.6.tar.gz
 hmaccalc-0.9.7.tar.gz
 hmaccalc-0.9.8.tar.gz
 hmaccalc-0.9.9.tar.gz
+hmaccalc-0.9.10.tar.gz


Index: hmaccalc.spec
===================================================================
RCS file: /cvs/extras/rpms/hmaccalc/devel/hmaccalc.spec,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -p -r1.5 -r1.6
--- hmaccalc.spec	25 Jul 2009 02:10:28 -0000	1.5
+++ hmaccalc.spec	3 Sep 2009 18:58:46 -0000	1.6
@@ -12,8 +12,8 @@
 	%{nil}
 
 Name:		hmaccalc
-Version:	0.9.9
-Release:	2%{?dist}
+Version:	0.9.10
+Release:	1%{?dist}
 Summary:	Tools for computing and checking HMAC values for files
 
 Group:		System Environment/Base
@@ -61,6 +61,15 @@ make check
 %{_mandir}/*/*
 
 %changelog
+* Thu Sep  3 2009 Nalin Dahyabhai <nalin at redhat.com> 0.9.10-1
+- refuse to truncate output below half the size of the hash length, or 80
+  bits, whichever is higher, in case we get used in a situation where
+  not doing so would make us vulnerable to CVE-2009-0217, in which an
+  attacker manages to convince a party doing verification to truncate
+  both the just-computed value and the value to be checked before
+  comparing them, as comparing just 1 bit would make detecting forgeries
+  close to impossible
+
 * Fri Jul 24 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.9-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
 


Index: sources
===================================================================
RCS file: /cvs/extras/rpms/hmaccalc/devel/sources,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -p -r1.5 -r1.6
--- sources	22 Jul 2009 22:11:34 -0000	1.5
+++ sources	3 Sep 2009 18:58:46 -0000	1.6
@@ -1 +1 @@
-889521571d77e4e7705ee2b8ed709008  hmaccalc-0.9.9.tar.gz
+7cdafa7876106e2716c2c09b58c86573  hmaccalc-0.9.10.tar.gz

More information about the scm-commits mailing list