VulnerableCode Package Details - pkg:alpm/archlinux/python-cryptography@3.3.1-1

Search for packages

Package details: pkg:alpm/archlinux/python-cryptography@3.3.1-1

Essentials
History (5)

purl	pkg:alpm/archlinux/python-cryptography@3.3.1-1

Next non-vulnerable version	3.4-1
Latest non-vulnerable version	3.4-1
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-j6cb-jtt4-aaas Aliases: CVE-2020-36242 GHSA-rhm9-p9w5-fwm7 PYSEC-2021-63	In the cryptography package before 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer overflow, as demonstrated by the Fernet class.	3.4-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:44.351132+00:00	Arch Linux Importer	Affected by	VCID-j6cb-jtt4-aaas	https://security.archlinux.org/AVG-1541	36.0.0
2024-11-20T01:38:42.934950+00:00	Arch Linux Importer	Affected by	VCID-j6cb-jtt4-aaas	https://security.archlinux.org/AVG-1541	34.3.2
2024-09-18T02:02:05.197795+00:00	Arch Linux Importer	Affected by	VCID-j6cb-jtt4-aaas	https://security.archlinux.org/AVG-1541	34.0.1
2024-04-23T19:47:33.812312+00:00	Arch Linux Importer	Affected by	VCID-j6cb-jtt4-aaas	https://security.archlinux.org/AVG-1541	34.0.0rc4
2024-01-03T22:28:07.715572+00:00	Arch Linux Importer	Affected by	VCID-j6cb-jtt4-aaas	https://security.archlinux.org/AVG-1541	34.0.0rc1