It was discovered that Botan could have compiler dependent operations induced under certain circumstances. An attacker could possibly use this issue to cause undefined behavior. (CVE-2024-50382, CVE-2024-50383)
Bing Shi discovered that Botan did not limit the size of certain inputs when checking primality and name constraints. An attacker could possibly use this issue to cause a denial of service. (CVE-2024-34702, CVE-2024-34703)
It was discovered that Botan did not correctly handle conflicting name constraints. An attacker could possibly use this issue to bypass authentication. (CVE-2024-39312)
{ "binaries": [ { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "botan" }, { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "botan-dbgsym" }, { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "libbotan-2-19" }, { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "libbotan-2-19-dbgsym" }, { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "libbotan-2-dev" }, { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "libbotan-2-doc" }, { "binary_version": "2.19.1+dfsg-2ubuntu1+esm1", "binary_name": "python3-botan" } ], "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro" }
{ "binaries": [ { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "botan" }, { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "botan-dbgsym" }, { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "libbotan-2-19" }, { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "libbotan-2-19-dbgsym" }, { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "libbotan-2-dev" }, { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "libbotan-2-doc" }, { "binary_version": "2.19.3+dfsg-1ubuntu2+esm1", "binary_name": "python3-botan" } ], "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro" }