Описание
Security update for python-python-jose
This update for python-python-jose fixes the following issues:
CVE-2024-33663: Fixed algorithm confusion with OpenSSH ECDSA keys and other key formats (boo#1223417).
Список пакетов
SUSE Package Hub 15 SP5
python3-python-jose-3.0.1-bp155.3.3.1
openSUSE Leap 15.5
python3-python-jose-3.0.1-bp155.3.3.1
Ссылки
- E-Mail link for openSUSE-SU-2024:0118-1
- SUSE Security Ratings
- SUSE Bug 1223417
- SUSE CVE CVE-2024-33663 page
Описание
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
Затронутые продукты
SUSE Package Hub 15 SP5:python3-python-jose-3.0.1-bp155.3.3.1
openSUSE Leap 15.5:python3-python-jose-3.0.1-bp155.3.3.1
Ссылки
- CVE-2024-33663
- SUSE Bug 1223417
- SUSE Bug 1226138