Re: python-crypto / pycryptodome / CVE-2018-6594

To: debian-lts@lists.debian.org
Subject: Re: python-crypto / pycryptodome / CVE-2018-6594
From: Brian May <bam@debian.org>
Date: Mon, 12 Feb 2018 17:33:32 +1100
Message-id: <[🔎] 87k1viu37n.fsf@prune.linuxpenguins.xyz>
In-reply-to: <[🔎] 87y3k2u2l3.fsf@prune.linuxpenguins.xyz>
References: <[🔎] 87h8qsv6nd.fsf@prune.linuxpenguins.xyz> <[🔎] 87y3k2u2l3.fsf@prune.linuxpenguins.xyz>

Brian May <bam@debian.org> writes:

> Here is my attempt to fix this for wheezy, based on the upstream patch
> which had to be applied manually. Only problem applying the patch was I
> changed the function back to number.getRandomRange because
> Integer.random_range is unavailable. Plus they both appear to do the
> same thing anyway.

I just built and uploaded versions for i386 and AMD64 (wheezy) to
https://people.debian.org/~bam/debian/pool/main/p/python-crypto/
-- 
Brian May <bam@debian.org>

Reply to:

References:
- python-crypto / pycryptodome / CVE-2018-6594
  - From: Brian May <brian@linuxpenguins.xyz>
- Re: python-crypto / pycryptodome / CVE-2018-6594
  - From: Brian May <bam@debian.org>

Prev by Date: Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add librsvg to dla-needed.txt
Next by Date: RFC: CVE-2018-6799/graphicsmagick
Previous by thread: Re: python-crypto / pycryptodome / CVE-2018-6594
Next by thread: krb5 security vulnerabilities
Index(es):
- Date
- Thread