From 3ee42e2f72b278f85baa54b22ff8211c8a1fff22 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Thu, 11 Aug 2022 15:57:37 +0200 Subject: [PATCH] Assigned RUSTSEC-2022-0047 to oqs (#1345) Co-authored-by: amousset --- .duplicate-id-guard | 2 +- crates/oqs/{RUSTSEC-0000-0000.md => RUSTSEC-2022-0047.md} | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) rename crates/oqs/{RUSTSEC-0000-0000.md => RUSTSEC-2022-0047.md} (96%) diff --git a/.duplicate-id-guard b/.duplicate-id-guard index 66471bb..efff7c8 100644 --- a/.duplicate-id-guard +++ b/.duplicate-id-guard @@ -1,3 +1,3 @@ This file causes merge conflicts if two ID assignment jobs run concurrently. This prevents duplicate ID assignment due to a race between those jobs. -cc20badbfdcfe94c12b2ce030582d1c9e928553446082b28cf627cb338f61a90 - +98c8a3a4f0b91dc5b78386122834d867c33b4a4c05f99f1f229242b9619f4961 - diff --git a/crates/oqs/RUSTSEC-0000-0000.md b/crates/oqs/RUSTSEC-2022-0047.md similarity index 96% rename from crates/oqs/RUSTSEC-0000-0000.md rename to crates/oqs/RUSTSEC-2022-0047.md index ce5de73..40ddae7 100644 --- a/crates/oqs/RUSTSEC-0000-0000.md +++ b/crates/oqs/RUSTSEC-2022-0047.md @@ -1,6 +1,6 @@ ```toml [advisory] -id = "RUSTSEC-0000-0000" +id = "RUSTSEC-2022-0047" package = "oqs" date = "2022-02-25" url = "https://groups.google.com/a/list.nist.gov/g/pqc-forum/c/KFgw5_qCXiI?pli=1" @@ -26,4 +26,4 @@ Ward Beullens found a practical key-recovery attack against Rainbow. The level I parametersets are removed from liboqs starting from version `0.7.2`. Find the scientific details in [Breaking Rainbow Takes a Weekend on a Laptop](https://eprint.iacr.org/2022/214). -This means all the `oqs::sig::Algorithm::RainbowI*` variants are insecure. \ No newline at end of file +This means all the `oqs::sig::Algorithm::RainbowI*` variants are insecure.