Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2026-39892

Опубликовано: 09 апр. 2026
Источник: ubuntu
Приоритет: medium
EPSS Низкий

Описание

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers (e.g. Hash.update()), this could lead to buffer overflows. This vulnerability is fixed in 46.0.7.

РелизСтатусПримечание
devel

pending

46.0.5-1ubuntu2
esm-infra/bionic

not-affected

code not present
esm-infra/focal

not-affected

code not present
esm-infra/xenial

not-affected

code not present
jammy

not-affected

code not present
noble

not-affected

code not present
questing

not-affected

code not present
upstream

released

46.0.7

Показывать по

Ссылки на источники

EPSS

Процентиль: 13%
0.00042
Низкий

Связанные уязвимости

nvd логотип

CVE-2026-39892

nvd
5 дней назад

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers (e.g. Hash.update()), this could lead to buffer overflows. This vulnerability is fixed in 46.0.7.

debian логотип

CVE-2026-39892

debian
5 дней назад

cryptography is a package designed to expose cryptographic primitives ...

github логотип

GHSA-p423-j2cm-9vmq

github
5 дней назад

Cryptography vulnerable to buffer overflow if non-contiguous buffers were passed to APIs

EPSS

Процентиль: 13%
0.00042
Низкий