Описание
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Ansible Automation Platform 2 | python-jose | Not affected | ||
| Red Hat Ansible Automation Platform 2.4 for RHEL 8 | automation-controller | Fixed | RHSA-2024:6428 | 05.09.2024 |
| Red Hat Ansible Automation Platform 2.4 for RHEL 9 | automation-controller | Fixed | RHSA-2024:6428 | 05.09.2024 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2277297python-jose: algorithm confusion with OpenSSH ECDSA keys and other key formats
EPSS
Процентиль: 23%
0.00074
Низкий
Связанные уязвимости
CVSS3: 6.5
ubuntu
около 1 года назад
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
CVSS3: 6.5
nvd
около 1 года назад
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
CVSS3: 6.5
debian
около 1 года назад
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA k ...
CVSS3: 7.4
github
около 1 года назад
python-jose algorithm confusion with OpenSSH ECDSA keys
EPSS
Процентиль: 23%
0.00074
Низкий