[CVE-2012-2146] The 'acts_as_encrypted' feature of Elixir does not correctly initialize the random seed for the Blowfish encryption algorithm, and is therefore insecure. This option adds a new optional AES mode which does not suffer this problem, plus a warning is now printed when insecure Blowfish encryption is used.
Please login to add feedback.
This update has been submitted for testing by dcallagh.
This update is currently being pushed to the Fedora EPEL 5 testing updates repository.
This update is currently being pushed to the Fedora EPEL 5 testing updates repository.
This update has been pushed to testing
This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by dcallagh.
This update is currently being pushed to the Fedora EPEL 5 stable updates repository.
This update is currently being pushed to the Fedora EPEL 5 stable updates repository.
This update is currently being pushed to the Fedora EPEL 5 stable updates repository.
This update has been pushed to stable