Skip to content

Cothority v3.4.1
Compare
Choose a tag to compare
@jeffallen jeffallen released this 31 Jan 10:58
v3.4.1
32b6bd0
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

As a result of CVE-2020-7919, binary versions of Cothority from before v3.4.1 are vulnerable to malicious input on the conode-conode channel.

This release is built with Go 1.13.7, which has a solution to CVE-2020-7919.

Other fixes in this version:

  • #2181 GetUpdateChain sends all available updates
  • e-voting: LookupSciper now uses LDAP
  • Usability improvements to bcadmin
  • Cleanup in personhood, replay
  • Bevm: Use reflection to handle in/out call args, and many other cleanups

Changes recently released via NPM:

  • KyberJS
    • #2177: correct KyberJS to do a mod after a neg operation
    • #2172: fix curve point double stability
  • CothorityJS
    • Use crypto-browserify to work in more environments
    • #2154: expose protobuf
    • improve reliability of wait proof
    • additional marshalling methods available
Assets 4
Loading