1.10.0-9

Related: rhbz#2167764
2023-01-17 15:51:12 +01:00 · 2023-01-17 15:51:12 +01:00 · 3dc4d5f5d5
commit 3dc4d5f5d5
parent 1a44c3bb53
1 changed files with 9 additions and 1 deletions
--- a/libgcrypt.spec
+++ b/libgcrypt.spec
@ -16,7 +16,7 @@ print(string.sub(hash, 0, 16))

 Name: libgcrypt
 Version: 1.10.0
-Release: 8%{?dist}
+Release: 9%{?dist}
 URL: https://www.gnupg.org/
 Source0: https://www.gnupg.org/ftp/gcrypt/libgcrypt/libgcrypt-%{version}.tar.bz2
 Source1: https://www.gnupg.org/ftp/gcrypt/libgcrypt/libgcrypt-%{version}.tar.bz2.sig
@ -219,6 +219,14 @@ mkdir -p -m 755 $RPM_BUILD_ROOT/etc/gcrypt
 %license COPYING

 %changelog
+* Tue Jan 24 2023 Jakub Jelen <jjelen@redhat.com> - 1.10.0-9
+- Avoid usage of invalid arguments sizes for PBKDF2 in FIPS mode
+- Do not allow large salt lengths with RSA-PSS padding
+- Disable X9.31 key generation in FIPS mode
+- Update the FIPS integrity checking code to upstream version
+- Update cipher modes FIPS indicators for AES WRAP and GCM
+- Disable jitter entropy generator
+
 * Thu Oct 20 2022 Jakub Jelen <jjelen@redhat.com> - 1.10.0-8
 - Fix unneeded PBKDF2 passphrase length limitation in FIPS mode
 - Enforce HMAC key lengths in MD API in FIPS mode