Stay Connected:

ELSA-2023-6615

ELSA-2023-6615 - python-cryptography security update

Type:SECURITY
Impact:MODERATE
Release Date:2023-11-11

Description


[36.0.1-4]
- Fix FTBFS caused by rsa_pkcs1_implicit_rejection OpenSSL feature, resolves rhbz#2203840

[36.0.1-3]
- Fix CVE-2023-23931: Don't allow update_into to mutate immutable objects, resolves rhbz#2172399
- Fix FTBFS due to failing test_load_invalid_ec_key_from_pem and test_decrypt_invalid_decrypt


Related CVEs


CVE-2023-23931

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) python-cryptography-36.0.1-4.el9.src.rpma1b48311593c588763868ad38f86ced71d09496315ecd9b6a9d9a91dc21c5a64-ol9_aarch64_baseos_latest
python-cryptography-36.0.1-4.el9.src.rpma1b48311593c588763868ad38f86ced71d09496315ecd9b6a9d9a91dc21c5a64-ol9_aarch64_u3_baseos_base
python3-cryptography-36.0.1-4.el9.aarch64.rpm5c55a8c0a4329634873b9302d4b2f7314e724bfb214d5ae5801463c71e437ff7-ol9_aarch64_baseos_latest
python3-cryptography-36.0.1-4.el9.aarch64.rpm5c55a8c0a4329634873b9302d4b2f7314e724bfb214d5ae5801463c71e437ff7-ol9_aarch64_u3_baseos_base
Oracle Linux 9 (x86_64) python-cryptography-36.0.1-4.el9.src.rpma1b48311593c588763868ad38f86ced71d09496315ecd9b6a9d9a91dc21c5a64-ol9_x86_64_baseos_latest
python-cryptography-36.0.1-4.el9.src.rpma1b48311593c588763868ad38f86ced71d09496315ecd9b6a9d9a91dc21c5a64-ol9_x86_64_u3_baseos_base
python3-cryptography-36.0.1-4.el9.x86_64.rpmefc2da4b21380474381cecccb9a89bfd032704060fb340c60fe6a000bb7664ca-ol9_x86_64_baseos_latest
python3-cryptography-36.0.1-4.el9.x86_64.rpmefc2da4b21380474381cecccb9a89bfd032704060fb340c60fe6a000bb7664ca-ol9_x86_64_u3_baseos_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights