The python-jwcrypto package provides Python implementations of the JSON Web Key , JSON Web Signature , JSON Web Encryption , and JSON Web Token JOSE standards. Security Fix: * python-jwcrypto: malicious JWE token can cause denial of service For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.