nixpkgs/pkgs/development/python-modules/cryptography
Michael Weiss 1083cdd279
python3Packages.cryptography: 3.1.1 -> 3.2 (security, CVE-2020-25659)
SECURITY ISSUE: Attempted to make RSA PKCS#1v1.5 decryption more
constant time, to protect against Bleichenbacher vulnerabilities. Due to
limitations imposed by our API, we cannot completely mitigate this
vulnerability and a future release will contain a new API which is
designed to be resilient to these for contexts where it is required.
Credit to Hubert Kario for reporting the issue. CVE-2020-25659
2020-10-26 12:19:28 +01:00
..
2.9.nix python2Packages.cryptography: pin to 2.9.2 2020-08-09 11:08:33 -07:00
default.nix python3Packages.cryptography: 3.1.1 -> 3.2 (security, CVE-2020-25659) 2020-10-26 12:19:28 +01:00
vectors-2.9.nix python2Packages.cryptography-vectors: pin at 2.9.2 2020-08-09 11:08:33 -07:00
vectors.nix python3Packages.cryptography: 3.1.1 -> 3.2 (security, CVE-2020-25659) 2020-10-26 12:19:28 +01:00