Information on source package python-cryptography

Available versions

ReleaseVersion
buster2.6.1-3+deb10u2
buster (security)2.6.1-3+deb10u4
bullseye3.3.2-1
bookworm38.0.4-3
bookworm (security)38.0.4-3~deb12u1
trixie41.0.7-4
sid42.0.5-2

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2024-26130vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedcryptography is a package designed to expose cryptographic primitives ...
CVE-2023-50782vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerablevulnerableA flaw was found in the python-cryptography package. This issue may al ...
CVE-2023-49083fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerablecryptography is a package designed to expose cryptographic primitives ...
CVE-2023-23931fixedvulnerable (no DSA)fixedfixedfixedcryptography is a package designed to expose cryptographic primitives ...
CVE-2020-36242vulnerable (no DSA)fixedfixedfixedfixedIn the cryptography package before 3.3.2 for Python, certain sequences ...
CVE-2020-25659vulnerable (no DSA)fixedfixedfixedfixedpython-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks ...

Resolved issues

BugDescription
CVE-2023-38325The cryptography package before 41.0.2 for Python mishandles SSH certi ...
CVE-2018-10903A flaw was found in python-cryptography versions between >=1.9.0 and < ...
CVE-2016-9243HKDF in cryptography before 1.5.2 returns an empty byte-string if used ...

Security announcements

DSA / DLADescription
DLA-3331-2python-cryptography - regression update
DLA-3331-1python-cryptography - security update
Search for package or bug name: Reporting problems