pyjwt 1.3.0-1ubuntu0.1 source package in Ubuntu
Changelog
pyjwt (1.3.0-1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: symmetric/asymmetric key confusion attacks
- debian/patches/CVE-2017-11424.patch: Throw if key is an PKCS1
PEM-encoded public key in jwt/algorithms.py,
tests/keys/testkey_pkcs1.pub.pem, tests/test_algorithms.py.
- CVE-2017-11424
-- <email address hidden> (Leonidas S. Barbosa) Tue, 29 Aug 2017 09:49:43 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Xenial | updates | main | misc | |
| Xenial | security | main | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| pyjwt_1.3.0.orig.tar.gz | 60.4 KiB | fc230244ec4e4014d6eeae894ac852e820a4c843dc209d4f77e76d564f46ee49 |
| pyjwt_1.3.0-1ubuntu0.1.debian.tar.xz | 4.4 KiB | 5d6c3928f888dd4220575dad1304ce457cca2d5e2fb94a353ae2002288fe4a70 |
| pyjwt_1.3.0-1ubuntu0.1.dsc | 2.2 KiB | fdd9998ef04095ca1b492f0c1f75602627727091adb8f28610793e0d8c0deeda |
Available diffs
Binary packages built by this source
- python-jwt: Python implementation of JSON Web Token
PyJWT implements the JSON Web Token draft 01, a way of representing
signed content using JSON data structures.
.
Supported algorithms for cryptographic signing:
.
* HS256 - HMAC using SHA-256 hash algorithm (default)
* HS384 - HMAC using SHA-384 hash algorithm
* HS512 - HMAC using SHA-512 hash algorithm
* RS256 - RSASSA-PKCS1-v1_5 signature algorithm using SHA-256 hash
algorithm
* RS384 - RSASSA-PKCS1-v1_5 signature algorithm using SHA-384 hash
algorithm
* RS512 - RSASSA-PKCS1-v1_5 signature algorithm using SHA-512 hash
algorithm
.
Supported reserved claim names:
- "exp" (Expiration Time) Claim
- python3-jwt: Python 3 implementation of JSON Web Token
PyJWT implements the JSON Web Token draft 01, a way of representing
signed content using JSON data structures.
.
Supported algorithms for cryptographic signing:
.
* HS256 - HMAC using SHA-256 hash algorithm (default)
* HS384 - HMAC using SHA-384 hash algorithm
* HS512 - HMAC using SHA-512 hash algorithm
* RS256 - RSASSA-PKCS1-v1_5 signature algorithm using SHA-256 hash
algorithm
* RS384 - RSASSA-PKCS1-v1_5 signature algorithm using SHA-384 hash
algorithm
* RS512 - RSASSA-PKCS1-v1_5 signature algorithm using SHA-512 hash
algorithm
.
Supported reserved claim names:
- "exp" (Expiration Time) Claim
.
This package contains the Python 3 version of the library.
