From: Niels Möller <nisse@lysator.liu.se>
Date: Mon, 28 Feb 2011 16:08:45 +0000 (+0100)
Subject: Added link for CBC information leakage.
X-Git-Tag: nettle_2.2_release_20110711~117
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=91f940b1e7e6f9ad04aa3e188359007ef5b9973c;p=thirdparty%2Fnettle.git

Added link for CBC information leakage.

Rev: nettle/nettle.texinfo:1.19
---

diff --git a/nettle.texinfo b/nettle.texinfo
index c585e656..5e0d00c4 100644
--- a/nettle.texinfo
+++ b/nettle.texinfo
@@ -1349,7 +1349,9 @@ Book mode, @acronym{ECB}) leaks information. Besides @acronym{ECB},
 Nettle provides three other modes of operation: Cipher Block Chaining
 (@acronym{CBC}), Counter mode (@acronym{CTR}), and Galois/Counter mode
 (@acronym{gcm}). @acronym{CBC} is widely used, but there are a few
-subtle issues of information leakage. @acronym{CTR} and @acronym{GCM}
+subtle issues of information leakage, see, e.g.,
+@uref{http://www.kb.cert.org/vuls/id/958563, @acronym{SSH} @acronym{CBC}
+vulnerability}. @acronym{CTR} and @acronym{GCM}
 were standardized more recently, and are believed to be more secure.
 @acronym{GCM} includes message authentication; for the other modes, one
 should always use a @acronym{MAC} (@pxref{Keyed hash functions}) or