Showing 1 - 25 of 344

Files

GNU Transport Layer Security Library 3.8.8: Posted Nov 5, 2024; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: Three changes to libgnutls. One build change. No API or ABI modifications.; tags | protocol, library; SHA-256 | ac4f020e583880b51380ed226e59033244bc536cad2623f2e26f5afa2939d8fb; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.6.1: Posted Oct 28, 2024; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 3.x.x release.; Changes: Fixed a bug in x86 CPUID detection introduced in 3.6.0 which would cause crashes on systems which have BMI1 but not BMI2. Fixed a bug in SLH-DSA signing, which did not default to the FIPS required randomized variant. Modified how elliptic curve blinding is performed, reducing the number of self-additions that may occur during multiplication. In speed command line utility, also iterate keygen several times.; tags | library; SHA-256 | 7cb8575d88d232c77174769d7f9e24bb44444160585986eebd66e749cb9a9089; Download | Favorite | View

libpcap 1.10.5: Posted Sep 2, 2024; Site tcpdump.org; Libpcap is a portable packet capture library which is used in many packet sniffers, including tcpdump.; Changes: This libpcap release has fifteen changes to the source code, one to thread safety, four to packet filtering, nine to Linux, five to Solaris, three to macOS, eleven to Haiku, three to Windows, one to BSD, macOS, AIX, Solaris 11, Linux, one to AirPcap, two to nflog, and many other updates.; tags | library; advisories | CVE-2023-7256, CVE-2024-8006; SHA-256 | 84fa89ac6d303028c1c5b754abff77224f45eca0a94eb1a34ff0aa9ceece3925; Download | Favorite | View

GNU Transport Layer Security Library 3.8.7.1: Posted Aug 15, 2024; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: New configure option to compile out DSA support in libgnutls. Experimental support added for X25519Kyber768Draft00 key exchange in TLS in libgnutls. No modifications to API or ABI.; tags | protocol, library; SHA-256 | 9ca0ddaccce28a74fa18d738744190afb3b0daebef74e6ad686bf7bef99abd60; Download | Favorite | View

OpenSCAP Libraries 1.4.0: Posted Aug 14, 2024; Site open-scap.org; The openscap project is a set of open source libraries that support the SCAP (Security Content Automation Protocol) set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF.; Changes: 2 new features, 4 removed features, and 8 maintenance bug fixes.; tags | protocol, library; systems | unix; SHA-256 | 4e7d9c1219b863e39d225be538ccc87470baf905dc8ad588979e13515f50cf4f; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.5.0: Posted Jul 9, 2024; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 3.x.x release.; Changes: Fixed a DoS caused by excessive name constraints. Fixed a name constraint processing error. Added a new much faster elliptic curve implementation. Added support for LMS hash based signatures. Added support for SSLKEYLOGFILE logging. Optimize processing in FFI botan_cipher_update. Add Public_Key::raw_public_key_bits. Many other updates and fixes noted in the changelog.; tags | library; advisories | CVE-2024-34702, CVE-2024-39312; SHA-256 | 67e8dae1ca2468d90de4e601c87d5f31ff492b38e8ab8bcbd02ddf7104ed8a9f; Download | Favorite | View

Botan C++ Crypto Algorithms Library 2.19.5: Posted Jul 9, 2024; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 2.19.x release that reaches end-of-life at the end of 2024.; Changes: Fixed a DoS caused by excessive name constraints. Fixed a name constraint processing error. Fixed a crash in OCB. Fixed a test failure in compression with certain versions of zlib. Fixed some iterator debugging errors in TLS CBC decryption. Avoids a miscompilation in ARIA when using XCode 14. Certificate verification update.; tags | library; advisories | CVE-2024-34702, CVE-2024-39312; SHA-256 | dfeea0e0a6f26d6724c4af01da9a7b88487adb2d81ba7c72fcaf52db522c9ad4; Download | Favorite | View

GNU Transport Layer Security Library 3.8.6: Posted Jul 3, 2024; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: RSA-OAEP encryption scheme is now supported. Fixed side-channel in the deterministic ECDSA. Fixed a bug where certtool crashed when verifying a certificate chain with more than 16 certificates. Compression libraries are now loaded dynamically as needed instead of all being loaded during gnutls library initialization. The gnutls library can now be linked with the static library of GMP.; tags | protocol, library; advisories | CVE-2024-28834, CVE-2024-28835; SHA-256 | 2e1588aae53cb32d43937f1f4eca28febd9c0c7aa1734fc5dd61a7e81e0ebcdd; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.4.0: Posted Apr 9, 2024; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 3.x.x release.; Changes: Added Ed448 signatures and X448 key exchange. X.509 certificate verification now can optionally ignore the expiration date of root certificates. Support for hybrid EC point encoding is now deprecated. Support for creating EC_Group objects with parameters larger than 521 bits is now deprecated. A dozen additional changes and fixes have been applied.; tags | library; SHA-256 | 71843afcc0a2c585f8f33fa304f0b58ae4b9c5d8306f894667b3746044277557; Download | Favorite | View

GNU Transport Layer Security Library 3.8.5: Posted Apr 4, 2024; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: Added option to disable RSAES-PKCS1-v1_5. Added support for RIPEMD160 and PBES1-DES-SHA1 for backward compatibility with GCR. A couple of memory related issues have been fixed in RSA PKCS#1 v1.5 decryption error handling and deterministic ECDSA with earlier versions of GMP. Fixed a bug where building gnutls statically failed due to a duplicate definition of nettle_rsa_compute_root_tr().; tags | protocol, library; SHA-256 | 66269a2cfe0e1c2dabec87bdbbd8ab656f396edd9a40dd006978e003cfa52bfc; Download | Favorite | View

GNU Transport Layer Security Library 3.8.4: Posted Mar 20, 2024; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: RSA-OAEP encryption scheme is now supported in libgnutls. libgnutls had a side-channel in the deterministic ECDSA fixed along with a couple other bug fixes. Three API and ABI modifications as well.; tags | protocol, library; SHA-256 | 2bea4e154794f3f00180fa2a5c51fe8b005ac7a31cd58bd44cdfa7f36ebc3a9b; Download | Favorite | View

OpenSCAP Libraries 1.3.10: Posted Mar 19, 2024; Site open-scap.org; The openscap project is a set of open source libraries that support the SCAP (Security Content Automation Protocol) set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF.; Changes: Eight new features and nine bug fixes have been added.; tags | protocol, library; systems | unix; SHA-256 | 0d023ff3fbdec617768ea5977fd3bb6702dfef4ae595da9a5bbc6ecc6ac9e575; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.3.0: Posted Feb 21, 2024; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 3.x.x release.; Changes: Fixed a potential denial of service caused by accepting arbitrary length primes as potential elliptic curve parameters in ASN.1 encodings. Added FrodoKEM post-quantum KEM. Added support for Blake2s. Added support for RFC 7250 in TLS 1.3 to allow authenticating peers using raw public keys. 43 additional changes and additions.; tags | library; SHA-256 | 368f11f426f1205aedb9e9e32368a16535dc11bd60351066e6f6664ec36b85b9; Download | Favorite | View

Botan C++ Crypto Algorithms Library 2.19.4: Posted Feb 21, 2024; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 2.19.x release.; Changes: Fixed a potential denial of service caused by accepting arbitrary length primes as potential elliptic curve parameters in ASN.1 encodings. Switched to using a constant time binary algorithm for computing GCD . Fixed a bug in SHAKE_Cipher which could cause incorrect output if set_key was called multiple times. Fixed a bug in RSA-KEM encryption where the shared secret key was incorrectly not padded to exactly the byte length of the modulus. 8 additional fixes and additions.; tags | library; SHA-256 | 5a3a88ef6433e97bcab0efa1ed60c6197e4ada9d9d30bc1c47437bf89b97f276; Download | Favorite | View

GNU Transport Layer Security Library 3.8.3: Posted Jan 16, 2024; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: libgnutls had multiple security fixes. They fixed more timing side-channel issues inside RSA-PSK key exchange. They fixed an assertion failure when verifying a certificate chain with a cycle of cross signatures. Fixed a regression in handling Ed25519 keys stored in PKCS#11 token certtool that was unable to handle Ed25519 keys generated on PKCS#11 with pkcs11-tool (OpenSC). This is a regression introduced in 3.8.2.; tags | protocol, library; advisories | CVE-2024-0553, CVE-2024-0567; SHA-256 | f74fc5954b27d4ec6dfbb11dea987888b5b124289a3703afcada0ee520f4173e; Download | Favorite | View

GNU Transport Layer Security Library 3.8.2: Posted Nov 16, 2023; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: This is a bug fix and enhancement release on the 3.8.x branch. Included is a fix for a timing side-channel inside RSA-PSK key exchange.; tags | protocol, library; advisories | CVE-2023-5981; SHA-256 | e765e5016ffa9b9dd243e363a0460d577074444ee2491267db2e96c9c2adef77; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.2.0: Posted Oct 9, 2023; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current stable release.; Changes: Added support for post-quantum secure key exchange in TLS 1.3. Added support for TLS PSK. Added a first class interface for XOFs. Added KMAC from NIST SP 800-185. Added cSHAKE XOF. Added improved APIs for key encapsulation. Many other updates, fixes, and improvements listed in the release notes.; tags | library; SHA-256 | 049c847835fcf6ef3a9e206b33de05dd38999c325e247482772a5598d9e5ece3; Download | Favorite | View

OpenSCAP Libraries 1.3.9: Posted Sep 6, 2023; Site open-scap.org; The openscap project is a set of open source libraries that support the SCAP (Security Content Automation Protocol) set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF.; Changes: OpenSCAP can now use PCRE2 library. Fixed offline mode (OVAL/sysctl). Fixed leak of dpkg cache when dpkginfo_init is called multiple times. Fixed un-expanded variable in xccdf report output. Fixed issues when parsing profiles. Fixed minor problems and resource leaks.; tags | protocol, library; systems | unix; SHA-256 | 033889da66178d5ce63d802c6a41cce8bcc08d09ae02e256f365f4daca8a1899; Download | Favorite | View

GNU Transport Layer Security Library 3.7.10: Posted Aug 4, 2023; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: Fixed removal of duplicate certificates during verification in libgnutls. Fixed checking on hash algorithm used in ECDSA in FIPS mode in libgnutls. Mark composite signature API non-approved in FIPS mode in libgnutls.; tags | protocol, library; SHA-256 | b6e4e8bac3a950a3a1b7bdb0904979d4ab420a81e74de8636dd50b467d36f5a9; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.1.1: Posted Jul 13, 2023; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current stable release.; Changes: Fixed two tests which were insufficiently serialized. This would cause sporadic test failures, particularly on machines with many cores.; tags | library; SHA-256 | 30c84fe919936a98fef5331f246c62aa2c0e4d2085b2d4511207f6a20afa3a6b; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.1.0: Posted Jul 11, 2023; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current stable release.; Changes: Added SPHINCS+ post quantum hash based signature scheme. Several small TLS compliance fixes, primarily around rejecting invalid behavior from the peer. Dozens of other fixes and updates.; tags | library; SHA-256 | 4e18e755a8bbc6bf96fac916fbf072ecd06740c72a72017c27162e4c0b4725fe; Download | Favorite | View

OpenSCAP Libraries 1.3.8: Posted Jun 21, 2023; Site open-scap.org; The openscap project is a set of open source libraries that support the SCAP (Security Content Automation Protocol) set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF.; Changes: The boot-time remediation service for systemd's Offline Update mode is now disabled by default. Added offline capabilities to the shadow OVAL probe. Added offline capabilities to the sysctl OVAL probe. Added auristorfs to list of network filesystems. Added new experimental linux-bound fwupdsecattr probe for system firmware security attributes (fwupd-based). Used ListUnitFiles D-Bus method to fetch all units in systemd OVAL probe. Fixed minor resource leaks.; tags | protocol, library; systems | unix; SHA-256 | d4bf0dd35e7f595f34a440ebf4234df24faa2602c302b96c43274dbb317803b3; Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.0.0: Posted Apr 11, 2023; Site botan.randombit.net; Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current stable release.; Changes: Botan is now a C++20 codebase; compiler requirements have been increased to GCC 11, Clang 14, or MSVC 2022. Added support for TLS v1.3. Support for TLS 1.0, TLS 1.1, and DTLS 1.0 have been removed. Many breaking changes regarding removal of functionality. Check the changelog for full details.; tags | library; SHA-256 | 5da552e00fa1c047a90c22eb5f0247ec27e7432b68b78e10a7ce0955269ccad7; Download | Favorite | View

libpcap 1.10.4: Posted Apr 10, 2023; Site tcpdump.org; Libpcap is a portable packet capture library which is used in many packet sniffers, including tcpdump.; Changes: This libpcap release makes minor improvements to the build system, documentation and code style.; tags | library; systems | unix; SHA-256 | ed19a0383fad72e3ad435fd239d7cd80d64916b87269550159d20e47160ebe5f; Download | Favorite | View

GNU Transport Layer Security Library 3.7.9: Posted Feb 10, 2023; Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org; GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.; Changes: Fixed a Bleichenbacher oracle in the TLS RSA key exchange for libgnutls.; tags | protocol, library; advisories | CVE-2023-0361; SHA-256 | aaa03416cdbd54eb155187b359e3ec3ed52ec73df4df35a0edd49429ff64d844; Download | Favorite | View

Page 1 of 14 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 235 files
Ubuntu 50 files
Debian 19 files
LiquidWorm 15 files
Apple 9 files
Gentoo 5 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

Files

Top Authors In Last 30 Days

Recent News