aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJack Lloyd <[email protected]>2016-04-23 07:19:47 -0400
committerJack Lloyd <[email protected]>2016-04-23 07:19:47 -0400
commit9404bddb4d86ac79befa7b17a3ba8e7a5512a765 (patch)
treea6d32a3a35530aa012fee39ce8224fc3b2a9d077
parentf645c0113fe1b1b3233186f081651e8adbe50fc0 (diff)
Update for 1.10.13 release
-rw-r--r--doc/news.rst12
-rw-r--r--readme.rst6
2 files changed, 15 insertions, 3 deletions
diff --git a/doc/news.rst b/doc/news.rst
index b1a04302a..fe6b5c4b7 100644
--- a/doc/news.rst
+++ b/doc/news.rst
@@ -23,6 +23,18 @@ Version 1.11.30, Not Yet Released
caused incorrect computation when the plaintext or AAD was exactly
a multiple of 16 bytes.
+Version 1.10.13, 2016-04-23
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+* Use constant time modular inverse algorithm to avoid possible
+ side channel attack against ECDSA (CVE-2016-2849)
+
+* Use constant time PKCS #1 unpadding to avoid possible side channel
+ attack against RSA decryption (CVE-2015-7827)
+
+* Avoid a compilation problem in OpenSSL engine when ECDSA was
+ disabled. Gentoo bug 542010
+
Version 1.11.29, 2016-03-20
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
diff --git a/readme.rst b/readme.rst
index f8df887ef..ff8f769c0 100644
--- a/readme.rst
+++ b/readme.rst
@@ -108,9 +108,9 @@ and is the most commonly packaged version. It is still supported for
security patches, but all development efforts are focused on 1.11.
The latest 1.10 release is
-`1.10.12 <http://botan.randombit.net/releases/Botan-1.10.12.tgz>`_
-`(sig) <http://botan.randombit.net/releases/Botan-1.10.12.tgz.asc>`_
-released on 2016-02-03
+`1.10.13 <http://botan.randombit.net/releases/Botan-1.10.13.tgz>`_
+`(sig) <http://botan.randombit.net/releases/Botan-1.10.13.tgz.asc>`_
+released on 2016-04-23
Books and other resources
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^