pyjwt 1.4.2-1ubuntu1 source package in Ubuntu

Changelog

pyjwt (1.4.2-1ubuntu1) artful; urgency=medium

  * SECURITY UPDATE: symmetric/asymmetric key confusion attacks
    - debian/patches/CVE-2017-11424.patch: Throw if key is an PKCS1
      PEM-encoded public key in jwt/algorithms.py, jwt/api_jws.py,
      jwt/api_jwt.py, tests/keys/testkey_pkcs1.pub.pem,
      tests/test_algorithms.py, tests/test_api_jws.py, tests/test_api_jwt.py.
    - CVE-2017-11424

 -- <email address hidden> (Leonidas S. Barbosa)  Mon, 28 Aug 2017 15:39:22 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa
Sponsored by:
Jamie Strandboge
Uploaded to:
Artful
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Artful: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
pyjwt_1.4.2.orig.tar.gz 29.8 KiB 87a831b7a3bfa8351511961469ed0462a769724d4da48a501cb8c96d1e17f570
pyjwt_1.4.2-1ubuntu1.debian.tar.xz 5.5 KiB e09ac318ffa93522abfac1df4031a6a5070cafd0df07578a165622e15daf0b14
pyjwt_1.4.2-1ubuntu1.dsc 2.5 KiB 6772faff72aec48f841feec0706fc9e59cd9c9dd20036b34259baba5ce253265

View changes file

Binary packages built by this source

python-jwt: No summary available for python-jwt in ubuntu artful.

No description available for python-jwt in ubuntu artful.

python3-jwt: No summary available for python3-jwt in ubuntu artful.

No description available for python3-jwt in ubuntu artful.