Download
| Alert*
oval:org.secpod.oval:def:69298
python3-cryptography is installed oval:org.secpod.oval:def:703371 python3-cryptography is installed oval:org.secpod.oval:def:89043550 python3-cryptography is installed oval:org.secpod.oval:def:704207 python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:51089 python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:89049711 This update for python-cryptography fixes the following issues: - CVE-2018-10903: The finalize_with_tag API did not enforce a minimum tag length. If a user did not validate the input length prior to passing it to finalize_with_tag an attacker could craft an invalid payload with a shortened tag such ... oval:org.secpod.oval:def:51677 python-cryptography: Cryptography Python library python-cryptography could generate incorrect keys. oval:org.secpod.oval:def:703369 python-cryptography: Cryptography Python library python-cryptography could generate incorrect keys. oval:org.secpod.oval:def:89047132 This patch updates the Python AWS SDK stack in SLE 15: General: # aws-cli - Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-boto3 - Version updated to upstream release 1.17.9 For a detailed list of all chang ... oval:org.secpod.oval:def:89050473 This update for python-cryptography fixes the following issues: - CVE-2020-25659: Attempted to mitigate Bleichenbacher attacks on RSA decryption . oval:org.secpod.oval:def:89049083 This update for grpc, protobuf, python-Deprecated, python-PyGithub, python- aiocontextvars, python-avro, python-bcrypt, python-cryptography, python- cryptography-vectors, python-google-api-core, python-googleapis-common-protos, python-grpcio-gcp, python-humanfriendly, python-jsondiff, python-knack, ... oval:org.secpod.oval:def:4501244 The python-cryptography packages contain a Python Cryptographic Authority"s cryptography library, which provides cryptographic primitives and recipes to Python developers. The following packages have been upgraded to a later upstream version: python-cryptography . Security Fix: * python-cryptograp ... oval:org.secpod.oval:def:73585 The python-cryptography packages contain a Python Cryptographic Authority"s cryptography library, which provides cryptographic primitives and recipes to Python developers. The following packages have been upgraded to a later upstream version: python-cryptography . Security Fix: * python-cryptograp ... oval:org.secpod.oval:def:705739 python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information over the network. oval:org.secpod.oval:def:70246 python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information over the network. oval:org.secpod.oval:def:2500382 The python-cryptography packages contain a Python Cryptographic Authority"s cryptography library, which provides cryptographic primitives and recipes to Python developers. oval:org.secpod.oval:def:89048683 This update for python-cryptography, python-cryptography-vectors fixes the following issues: * Update in SLE-15 * CVE-2020-36242: Fixed a bug where certain sequences of update calls could result in integer overflow . * CVE-2020-25659: Fixed Bleichenbacher vulnerabilities . * update to 3.3.2 oval:org.secpod.oval:def:96803 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:19500542 cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. In affected versions 'Cipher.update_into' would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable objects to be mutated, th ... oval:org.secpod.oval:def:2600371 The python-cryptography packages contain a Python Cryptographic Authority"s cryptography library, which provides cryptographic primitives and recipes to Python developers. oval:org.secpod.oval:def:96501 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:2501273 The python-cryptography packages contain a Python Cryptographic Authority"s cryptography library, which provides cryptographic primitives and recipes to Python developers. oval:org.secpod.oval:def:96802 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:19500520 cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling 'load_pem_pkcs7_certificates' or 'load_der_pkcs7_certificates' could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious risk of Denial of S ... oval:org.secpod.oval:def:96500 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:89051256 This update for python3-cryptography fixes the following issues: * CVE-2023-49083: Fixed a NULL pointer dereference when loading certificates from a PKCS#7 bundle . oval:org.secpod.oval:def:96499 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:98744 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:89048519 This update for python-cryptography fixes the following issues: * CVE-2023-23931: Fixed memory corruption in Cipher.update_into . oval:org.secpod.oval:def:89048653 This update for python-cryptography fixes the following issues: * CVE-2023-23931: Fixed memory corruption due to invalidly changed immutable object . oval:org.secpod.oval:def:89048484 This update for python-cryptography fixes the following issues: * CVE-2023-23931: Fixed a memory corruption inside Cipher.update_into via immutable objects . |