Search for packages
| purl | pkg:deb/ubuntu/python-cryptography@2.8-3ubuntu0.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1vvs-dn11-aaak | python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API, via timed processing of valid PKCS#1 v1.5 ciphertext. |
CVE-2020-25659
GHSA-hggm-jpg3-v476 PYSEC-2021-62 |
| VCID-j6cb-jtt4-aaas | In the cryptography package before 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer overflow, as demonstrated by the Fernet class. |
CVE-2020-36242
GHSA-rhm9-p9w5-fwm7 PYSEC-2021-63 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|