VYPR

PyPI package

rfc3161-client

pkg:pypi/rfc3161-client

Vulnerabilities (2)

  • CVE-2026-33753MedApr 8, 2026
    affected < 1.0.6fixed 1.0.6

    rfc3161-client is a Python library implementing the Time-Stamp Protocol (TSP) described in RFC 3161. Prior to 1.0.6, an Authorization Bypass vulnerability in rfc3161-client's signature verification allows any attacker to impersonate a trusted TimeStamping Authority (TSA). By expl

  • CVE-2025-52556CriJun 21, 2025
    affected < 1.0.3fixed 1.0.3

    rfc3161-client is a Python library implementing the Time-Stamp Protocol (TSP) described in RFC 3161. Prior to version 1.0.3, there is a flaw in the timestamp response signature verification logic. In particular, chain verification is performed against the TSR's embedded certifica