38e6789372
The 5.6.5 release was mostly a maintenance release. The release included two CVE fixes. The first, CVE-2016-7420, was a procedural finding due to external build systems failing to define NDEBUG for release builds. The gap was the project's failure to tell users to define NDEBUG. The second, CVE-2016-7544, was a potential memory corruption on Windows platforms when using Microsoft compilers due to use of _malloca and _freea. Due to CVE-2016-7420 and the possibility for an unwanted assert to egress data, users and distros are encouraged to recompile the library and all dependent programs.
7 lines
454 B
Text
7 lines
454 B
Text
$NetBSD: distinfo,v 1.12 2017/05/18 21:20:23 adam Exp $
|
|
|
|
SHA1 (cryptopp565.zip) = a74f207a315b6a133af9640a45bde9d6e378af4d
|
|
RMD160 (cryptopp565.zip) = 4c13bb99dd205d54598527386e88b0dd436fc524
|
|
SHA512 (cryptopp565.zip) = f13718d02ca69b0129aaf9e767c9d2e0333aa7538355f9c63d9eaf1ff369062084a18dc01489439ebf37797b3ea81b01beb072057d47ec962bfb824ddc72abc7
|
|
Size (cryptopp565.zip) = 4220843 bytes
|
|
SHA1 (patch-GNUmakefile) = a83b221092685721c30ba00d152e11a73cf20f1e
|