Overview
Request 715444 accepted
- Update to version 1.0.10
* This release provides a fix for CVE-2017-2626 for platforms
which don't have arc4random_buf() in their default libraries
but do have getentropy(), such as Linux platforms with a kernel
version of 3.17 or newer and a glibc version of 2.25 or newer.
(libICE 1.0.9 already ensured that arc4random_buf() is used on
platforms that have it to provide sufficient entropy in ICE
key generation, but left other platforms with the weaker methods.
Linux platforms could also have linked against libbsd to use
arc4random_buf() with libICE 1.0.9 for stronger keys.)
- supersedes U_Use-getentropy-if-arc4random_buf-is-not-available.patch
Request History
sndirsch created request
- Update to version 1.0.10
* This release provides a fix for CVE-2017-2626 for platforms
which don't have arc4random_buf() in their default libraries
but do have getentropy(), such as Linux platforms with a kernel
version of 3.17 or newer and a glibc version of 2.25 or newer.
(libICE 1.0.9 already ensured that arc4random_buf() is used on
platforms that have it to provide sufficient entropy in ICE
key generation, but left other platforms with the weaker methods.
Linux platforms could also have linked against libbsd to use
arc4random_buf() with libICE 1.0.9 for stronger keys.)
- supersedes U_Use-getentropy-if-arc4random_buf-is-not-available.patch
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
namtrac accepted review
staging-bot added openSUSE:Factory:Staging:D as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:D"
staging-bot accepted review
Picked openSUSE:Factory:Staging:D
licensedigger accepted review
ok
dimstar_suse accepted review
ready to accept
dimstar_suse approved review
ready to accept
dimstar_suse accepted request
Accept to openSUSE:Factory
