python-cryptography 2.8-3ubuntu0.3 source package in Ubuntu
Changelog
python-cryptography (2.8-3ubuntu0.3) focal-security; urgency=medium
* SECURITY UPDATE: exposure of confidential data
- debian/patches/CVE-2023-50782.patch: update bindings in
src/_cffi_src/openssl/rsa.py to be compatible with new openssl version
31.1.1f-1ubuntu2.22, which fixes the issue by changing PKCS#1 v1.5 RSA to
return random output instead of an exception when detecting wrong padding
- CVE-2023-50782
-- Jorge Sancho Larraz <email address hidden> Thu, 29 Feb 2024 11:30:05 +0100
Upload details
- Uploaded by:
- Jorge Sancho Larraz
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | main | misc | |
| Focal | security | main | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| python-cryptography_2.8.orig.tar.gz | 492.7 KiB | 3cda1f0ed8747339bbdf71b9f38ca74c7b592f24f65cdb3ab3765e4b02871651 |
| python-cryptography_2.8-3ubuntu0.3.debian.tar.xz | 13.8 KiB | dbc717de3f41cb8af09cad7bfd89ba054704c804554287433c96f5d72481dfa0 |
| python-cryptography_2.8-3ubuntu0.3.dsc | 3.6 KiB | ee643f26ec213587739ce9989928ee5e2ba08963cfcc02757a5d571a32bf3fa2 |
Available diffs
Binary packages built by this source
- python-cryptography: Python library exposing cryptographic recipes and primitives (Python 2)
The cryptography library is designed to be a "one-stop-shop" for
all your cryptographic needs in Python.
.
As an alternative to the libraries that came before it, cryptography
tries to address some of the issues with those libraries:
- Lack of PyPy and Python 3 support.
- Lack of maintenance.
- Use of poor implementations of algorithms (i.e. ones with known
side-channel attacks).
- Lack of high level, "Cryptography for humans", APIs.
- Absence of algorithms such as AES-GCM.
- Poor introspectability, and thus poor testability.
- Extremely error prone APIs, and bad defaults.
.
This package contains the Python 2 version of cryptography.
- python-cryptography-dbgsym: debug symbols for python-cryptography
- python-cryptography-doc: Python library exposing cryptographic recipes and primitives (documentation)
The cryptography library is designed to be a "one-stop-shop" for
all your cryptographic needs in Python.
.
As an alternative to the libraries that came before it, cryptography
tries to address some of the issues with those libraries:
- Lack of PyPy and Python 3 support.
- Lack of maintenance.
- Use of poor implementations of algorithms (i.e. ones with known
side-channel attacks).
- Lack of high level, "Cryptography for humans", APIs.
- Absence of algorithms such as AES-GCM.
- Poor introspectability, and thus poor testability.
- Extremely error prone APIs, and bad defaults.
.
This package contains the documentation for cryptography.
- python3-cryptography: Python library exposing cryptographic recipes and primitives (Python 3)
The cryptography library is designed to be a "one-stop-shop" for
all your cryptographic needs in Python.
.
As an alternative to the libraries that came before it, cryptography
tries to address some of the issues with those libraries:
- Lack of PyPy and Python 3 support.
- Lack of maintenance.
- Use of poor implementations of algorithms (i.e. ones with known
side-channel attacks).
- Lack of high level, "Cryptography for humans", APIs.
- Absence of algorithms such as AES-GCM.
- Poor introspectability, and thus poor testability.
- Extremely error prone APIs, and bad defaults.
.
This package contains the Python 3 version of cryptography.
- python3-cryptography-dbgsym: debug symbols for python3-cryptography
