diff options
| author | Michael Weiss <dev.primeos@gmail.com> | 2020-10-26 11:49:18 +0100 |
|---|---|---|
| committer | Michael Weiss <dev.primeos@gmail.com> | 2020-10-26 12:19:28 +0100 |
| commit | 1083cdd279dc71b8aebb1e600fe9ad52d9e47b70 (patch) | |
| tree | 9c94d2972a8dd36ceae984cc4536f0d7224ced1e /pkgs/development/python-modules/termplotlib/gnuplot-subprocess.patch | |
| parent | 1111911593b8bafbab4c280f53d728ee51522689 (diff) | |
python3Packages.cryptography: 3.1.1 -> 3.2 (security, CVE-2020-25659)
SECURITY ISSUE: Attempted to make RSA PKCS#1v1.5 decryption more
constant time, to protect against Bleichenbacher vulnerabilities. Due to
limitations imposed by our API, we cannot completely mitigate this
vulnerability and a future release will contain a new API which is
designed to be resilient to these for contexts where it is required.
Credit to Hubert Kario for reporting the issue. CVE-2020-25659
Diffstat (limited to 'pkgs/development/python-modules/termplotlib/gnuplot-subprocess.patch')
0 files changed, 0 insertions, 0 deletions
