Copied from
ubuntu trusty in
Private PPA for Ubuntu Security Team
by Ubuntu Archive Robot
Changelog
botan1.10 (1.10.5-1+deb7u1ubuntu0.14.04.1) trusty-security; urgency=medium
* Security merge from Debian.
botan1.10 (1.10.5-1+deb7u1) wheezy-security; urgency=high
* Non-maintainer upload by the LTS team.
* CVE-2014-9742: Fix insufficient randomness in Miller-Rabin primality check.
* CVE-2015-5726: Fix crash in BER decoder.
* CVE-2015-5727: Fix excess memory allocation in BER decoder.
* CVE-2015-7827: Fix PKCS #1 v1.5 decoding was not constant time.
* CVE-2016-2194: Fix infinite loop in modulur square root algorithm.
* CVE-2016-2195: Fix Heap overflow on invalid ECC point.
* CVE-2016-2849: Use constant time modular inverse algorithm to avoid
possible side channel attack against ECDSA.
-- Steve Beattie <email address hidden> Sat, 20 Aug 2016 16:56:27 -0700