Update to 2.16.3

5 years ago · f225ed5ecf
parent 060338f1bb
commit f225ed5ecf
3 changed files with 8 additions and 3 deletions
--- a/.gitignore
+++ b/.gitignore
@ -21,3 +21,4 @@
 /mbedtls-2.16.0-apache.tgz
 /mbedtls-2.16.1-apache.tgz
 /mbedtls-2.16.2-apache.tgz
+/mbedtls-2.16.3-apache.tgz
--- a/mbedtls.spec
+++ b/mbedtls.spec
@ -3,8 +3,8 @@
 %endif

 Name: mbedtls
-Version: 2.16.2
-Release: 4%{?dist}
+Version: 2.16.3
+Release: 1%{?dist}
 Summary: Light-weight cryptographic and SSL/TLS library
 License: ASL 2.0
 URL: https://tls.mbed.org/
@ -122,6 +122,10 @@ LD_LIBRARY_PATH=$PWD/library ctest --output-on-failure -V
 %doc apidoc/*

 %changelog
+* Sat Sep 28 2019 Morten Stevens <mstevens@fedoraproject.org> - 2.16.3-1
+- Update to 2.16.3
+- Side channel attack on deterministic ECDSA (CVE-2019-16910)
+
 * Tue Sep 03 2019 Morten Stevens <mstevens@fedoraproject.org> - 2.16.2-4
 - devel package needs pkcs11-helper-devel (#1748468)

--- a/2
+++ b/2
@ -1 +1 @@
-SHA512 (mbedtls-2.16.2-apache.tgz) = afb9a7a68f09a0ae4b8bda293fd568c0758c6173f33d8383aea0ef52e0901ef1508cda2639ef394112b965a43dc49004dc3abf0a23a752c276be5a42d7e49d0c
+SHA512 (mbedtls-2.16.3-apache.tgz) = 62b984d04570334e740ff8b857b4dad73804a4d0aec22b224cb813eb8a6a4b2ec9bff3126c198552e030da94201fd98ed764e8b9f53056e2f94a51dfdbb47cdd