VYPR

apk package

wolfi/py3.10-jupyterhub-ltiauthenticator

pkg:apk/wolfi/py3.10-jupyterhub-ltiauthenticator

Vulnerabilities (1)

  • CVE-2026-34052MedApr 3, 2026
    affected < 1.6.3-r0fixed 1.6.3-r0

    LTI JupyterHub Authenticator is a JupyterHub authenticator for LTI. Prior to version 1.6.3, the LTI 1.1 validator stores OAuth nonces in a class-level dictionary that grows without bounds. Nonces are added before signature validation, so an attacker with knowledge of a valid cons