Fast elliptic curve cryptography, specifically digital signatures. There
is no nonce reuse, no branching on secret material, and all points are
validated before any operations are performed on them. Timing side
channels are mitigated via Montgomery point multiplication. Nonces are
generated per RFC6979.
CVE-2021-1252 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1252>:
Fix for Excel XLM parser infinite loop. Affects 0.103.0 and 0.103.1 only.
CVE-2021-1404 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1404>:
Fix for PDF parser buffer over-read; possible crash. Affects 0.103.0 and 0.103.1 only.
CVE-2021-1405 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1405>:
Fix for mail parser NULL-dereference crash. Affects 0.103.1 and prior.
Fix possible memory leak in PNG parser.
FreshClam: Deprecate the SafeBrowsing config option. The SafeBrowsing
option will no longer do anything.
FreshClam: Improved HTTP 304, 403, & 429 handling.
Fix the FreshClam mirror-sync issue where a downloaded database is
"older than the version advertised."
Note, while it is broadly compatible with the most common use of
yubiserve it has its limits: it supports only sqlite3 (using the same
schema as before) not other databases, and it only supports HTTP
internally, if you require HTTPS then you will need to use a proxy (e.g.
relayd or nginx). It no longer uses a configuration file, only command
line arguments.
Fickling is a decompiler, static analyzer, and bytecode rewriter for
Python pickle object serializations.
Pickled Python objects are in fact bytecode that is interpreted by a
stack-based virtual machine built into Python called the "Pickle
Machine". Fickling can take pickled data streams and decompile them into
human-readable Python code that, when executed, will deserialize to the
original serialized object.
feedback and OK sthen@
(yet another pytest port needing PY_IGNORE_IMPORTMISMATCH=1 to avoid
"imported module .../lib... is not the same as the test file we want to
collect [file without lib...]")
