Univention Bugzilla – Bug 55739
python-cryptography: Multiple issues (5.0)
Last modified: 2023-02-23 16:55:11 CET
New Debian python-cryptography 2.6.1-3+deb10u3 fixes: This update addresses the following issue: * memory corruption via immutable objects (CVE-2023-23931)
--- mirror/ftp/pool/main/p/python-cryptography/python-cryptography_2.6.1-3+deb10u2.dsc +++ apt/ucs_5.0-0-errata5.0-3/source/python-cryptography_2.6.1-3+deb10u3.dsc @@ -1,3 +1,10 @@ +2.6.1-3+deb10u3 [Tue, 21 Feb 2023 11:35:17 -0800] Chris Lamb <lamby@debian.org>: + + * Non-maintainer upload by the Debian LTS team. + * CVE-2023-23931: Prevent a potential memory corruption vulnerability caused + by a programming confusion between mutable and immutable buffers. + (Closes: #1031049) + 2.6.1-3+deb10u2 [Fri, 18 Oct 2019 16:08:59 +0200] Moritz Mühlenhoff <jmm@debian.org>: * Cherrypick 92241410b5b0591d849443b3023992334a4be0a2 and <http://piuparts.knut.univention.de/5.0-3/#6734135692136984806>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-3] aaf091a7cd Bug #55739: python-cryptography 2.6.1-3+deb10u3 doc/errata/staging/python-cryptography.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x593>