rpm package
opensuse/python-cryptography&distro=openSUSE Leap 15.5
pkg:rpm/opensuse/python-cryptography&distro=openSUSE%20Leap%2015.5
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-26130 | — | < 41.0.3-150400.16.15.1 | 41.0.3-150400.16.15.1 | Feb 21, 2024 | cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Starting in version 38.0.0 and prior to version 42.0.4, if `pkcs12.serialize_key_and_certificates` is called with both a certificate whose public key did not match the provided | ||
| CVE-2023-49083 | — | < 41.0.3-150400.16.12.1 | 41.0.3-150400.16.12.1 | Nov 29, 2023 | cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling `load_pem_pkcs7_certificates` or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious | ||
| CVE-2023-30608 | — | < 41.0.3-150400.16.19.1 | 41.0.3-150400.16.19.1 | Apr 18, 2023 | sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service). This issue was introduced by commit `e75e358`. The vulnerability may lead to Denial of |
- CVE-2024-26130Feb 21, 2024affected < 41.0.3-150400.16.15.1fixed 41.0.3-150400.16.15.1
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Starting in version 38.0.0 and prior to version 42.0.4, if `pkcs12.serialize_key_and_certificates` is called with both a certificate whose public key did not match the provided
- CVE-2023-49083Nov 29, 2023affected < 41.0.3-150400.16.12.1fixed 41.0.3-150400.16.12.1
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling `load_pem_pkcs7_certificates` or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious
- CVE-2023-30608Apr 18, 2023affected < 41.0.3-150400.16.19.1fixed 41.0.3-150400.16.19.1
sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service). This issue was introduced by commit `e75e358`. The vulnerability may lead to Denial of