openSUSE-SU-2017:3421-1

Опубликовано: 22 дек. 2017

Источник: suse-cvrf

Описание

Security update for python-PyJWT

This update for python-PyJWT fixes the following issues:

CVE-2017-12880: fix symmetric/asymmetric confusion when handling PKCS1 public keys (bsc#1054106)

This update was imported from the SUSE:SLE-12-SP1:Update update project.

Список пакетов

openSUSE Leap 42.2

python-PyJWT-1.4.2-5.1

openSUSE Leap 42.3

python-PyJWT-1.4.2-5.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-12/msg00096.html
E-Mail link for openSUSE-SU-2017:3421-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-11424. Reason: This candidate is a duplicate of CVE-2017-11424. Notes: All CVE users should reference CVE-2017-11424 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Затронутые продукты

openSUSE Leap 42.2:python-PyJWT-1.4.2-5.1

openSUSE Leap 42.3:python-PyJWT-1.4.2-5.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-12880.html
CVE-2017-12880
https://bugzilla.suse.com/1054106
SUSE Bug 1054106

openSUSE-SU-2017:3421-1

Описание

Список пакетов

openSUSE Leap 42.2

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-12880

Описание

Затронутые продукты

Ссылки