Download
| Alert*
|
oval:org.secpod.oval:def:89045025
This update for python-rsa fixes the following issues: - CVE-2020-13757: Proper handling of leading "\0" bytes during decryption of ciphertext oval:org.secpod.oval:def:1601185 Python-RSA before 4.1 ignores leading "\0" bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior . A flaw was found ... oval:org.secpod.oval:def:118478 Python-RSA is a pure-Python RSA implementation. It supports encryption and decryption, signing and verifying signatures, and key generation according to PKCS#1 version 1.5. It can be used as a Python library as well as on the command-line. oval:org.secpod.oval:def:89047281 This update for python-rsa fixes the following issues: - CVE-2020-13757: Proper handling of leading "\0" bytes during decryption of ciphertext oval:org.secpod.oval:def:1700380 Python-RSA before 4.1 ignores leading "\0" bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior |
