rpm package
almalinux/python3-cryptography
pkg:rpm/almalinux/python3-cryptography
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-49083 | — | < 3.2.1-8.el8_10 | 3.2.1-8.el8_10 | Nov 29, 2023 | cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling `load_pem_pkcs7_certificates` or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious | ||
| CVE-2023-23931 | — | < 36.0.1-4.el9 | 36.0.1-4.el9 | Feb 7, 2023 | cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. In affected versions `Cipher.update_into` would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable object |
- CVE-2023-49083Nov 29, 2023affected < 3.2.1-8.el8_10fixed 3.2.1-8.el8_10
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling `load_pem_pkcs7_certificates` or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious
- CVE-2023-23931Feb 7, 2023affected < 36.0.1-4.el9fixed 36.0.1-4.el9
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. In affected versions `Cipher.update_into` would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable object