Publishing details
Changelog
cryptojs (3.1.2+dfsg-2ubuntu0.20.04.1) focal-security; urgency=medium
* SECURITY UPDATE: weak hash algorithm (SHA1) and iterations (1) in PBKDF2.
- debian/build: include SHA256 as dependency instead of SHA1.
- debian/patches/CVE-2023-46233.patch: modify default PBKDF2 configurations
to use SHA256 and 250k iterations.
- CVE-2023-46233.
-- Federico Quattrin <email address hidden> Wed, 24 Apr 2024 11:46:50 -0300
Builds
Built packages
-
libjs-cryptojs
collection of cryptographic algorithms implemented in JavaScript
Package files