Download
| Alert*
|
oval:org.secpod.oval:def:51089
python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:89049711 This update for python-cryptography fixes the following issues: - CVE-2018-10903: The finalize_with_tag API did not enforce a minimum tag length. If a user did not validate the input length prior to passing it to finalize_with_tag an attacker could craft an invalid payload with a shortened tag such ... oval:org.secpod.oval:def:89047891 This update for python-cryptography, python-cryptography-vectors fixes the following issues: - Update in SLE-15 - Refresh patches for new version - Update in SLE-15 - update to 2.9.2 * 2.9.2 - 2020-04-22 - Updated the macOS wheel to fix an issue where it would not run on macOS versions older than ... oval:org.secpod.oval:def:89043749 This update for python-cffi, python-cryptography fixes the following issues: Security issue fixed: - CVE-2018-10903: Fixed GCM tag forgery via truncated tag in finalize_with_tag API . Non-security issues fixed: python-cffi was updated to 1.11.2 : - fixed a build failure on i586 - Salt was unable to ... oval:org.secpod.oval:def:704207 python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information if it received a specially crafted input. |
