---
- branch: MAIN
  date: Fri Nov 11 19:46:48 UTC 2016
  files:
  - new: '1.41'
    old: '1.40'
    path: pkgsrc/security/botan/Makefile
    pathrev: pkgsrc/security/botan/Makefile@1.41
    type: modified
  - new: '1.6'
    old: '1.5'
    path: pkgsrc/security/botan/PLIST
    pathrev: pkgsrc/security/botan/PLIST@1.6
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/security/botan/distinfo
    pathrev: pkgsrc/security/botan/distinfo@1.19
    type: modified
  id: 20161111T194648Z.4bd4af032e4727bb9f3340df3c2d8fa47e9c530d
  log: |
    Update to Botan-1.10.13:
    - Use constant time modular inverse algorithm to avoid possible side
      channel attack against ECDSA (CVE-2016-2849)
    - Use constant time PKCS #1 unpadding to avoid possible side channel
      attack against RSA decryption (CVE-2015-7827)
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/security/botan'
  unixtime: '1478893608'
  user: joerg