Correct affected version range for CVE-2018-20187

Using the Montgomery ladder for operator* was introduced in ca155a7e54, previous versions did something different, which was itself vulnerable to side channels, but not with the same issue as CVE-2018-20187.
author: Jack Lloyd <[email protected]> 2018-12-19 11:05:49 -0500
committer: Jack Lloyd <[email protected]> 2018-12-19 11:05:49 -0500
commit: 3782374933d00933558beeca0f45059029405986 (patch)
tree: cc48004b9e87b35950100f5b8585a5986c140208 /doc/security.rst
parent: ae17d8a68215c22541ef04580e82a8a7d5b5d441 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/doc/security.rst b/doc/security.rst
index 174732c4e..b606e57f6 100644
--- a/doc/security.rst
+++ b/doc/security.rst
@@ -25,7 +25,7 @@ https://keybase.io/jacklloyd and on most PGP keyservers.
   perform a brute force attack on the key somewhat more efficiently than they
   would otherwise. Found by Ján Jančár using ECTester.
 
-  Fixed in 2.8.0, all previous versions affected.
+  Introduced in 1.11.20, fixed in 2.8.0.
 
 * 2018-06-13 (CVE-2018-12435): ECDSA side channel
author	Jack Lloyd <[email protected]>	2018-12-19 11:05:49 -0500
committer	Jack Lloyd <[email protected]>	2018-12-19 11:05:49 -0500
commit	3782374933d00933558beeca0f45059029405986 (patch)
tree	cc48004b9e87b35950100f5b8585a5986c140208 /doc/security.rst
parent	ae17d8a68215c22541ef04580e82a8a7d5b5d441 (diff)