pkg:Alpine/botan

All known vulnerabilities

• CRITICAL9.8CVE-2021-24115In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and h…
  from 0, < 2.11.0-r4
• CRITICAL9.8CVE-2018-9127Botan 2.2.0 - 2.4.0 (fixed in 2.5.0) improperly handled wildcard certificates and could accept certain certificates as valid for hostnames…
  from 0, < 2.5.0-r0
• HIGH7.5CVE-2024-34703Botan is a C++ cryptography library.
  from 0, < 2.19.5-r0
• HIGH7.5CVE-2018-9860An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0.
  from 0, < 2.6.0-r0
• MEDIUM5.9CVE-2021-40529The ElGamal implementation in Botan through 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during in…
  from 0, < 2.17.3-r3
• MEDIUM5.9CVE-2018-20187A side-channel issue was discovered in Botan before 2.9.0.
  from 0, < 2.9.0-r0
• MEDIUM5.9CVE-2018-12435Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number P…
  from 0, < 2.7.0-r0
• MEDIUM5.3CVE-2024-39312Botan is a C++ cryptography library.
  from 0, < 2.19.5-r0
• MEDIUM5.3CVE-2024-34702Botan is a C++ cryptography library.
  from 0, < 2.19.5-r0