ELSA-2024-12079

ULN >
Oracle Linux Errata repository >
ELSA-2024-12079

ELSA-2024-12079 - python-cryptography security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-01-18

Description

[36.0.1-4.0.1]
- Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates [Orabug: 36119159]

[36.0.1-4]
- Fix FTBFS caused by rsa_pkcs1_implicit_rejection OpenSSL feature, resolves rhbz#2203840

[36.0.1-3]
- Fix CVE-2023-23931: Don't allow update_into to mutate immutable objects, resolves rhbz#2172399
- Fix FTBFS due to failing test_load_invalid_ec_key_from_pem and test_decrypt_invalid_decrypt

Related CVEs

CVE-2023-49083

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	python-cryptography-3.2.1-6.0.1.el8.src.rpm	f44d06b349086b99f3485315d80ce6875556ed1ce17f1ce43c6447aae8467ea3	-	ol8_aarch64_baseos_latest
	python-cryptography-3.2.1-6.0.1.el8.src.rpm	f44d06b349086b99f3485315d80ce6875556ed1ce17f1ce43c6447aae8467ea3	-	ol8_aarch64_u9_baseos_patch
	python3-cryptography-3.2.1-6.0.1.el8.aarch64.rpm	3d167d87fe494be74782876764715587e7f50e29d0a7216270b819a88ffeb99e	-	ol8_aarch64_baseos_latest
	python3-cryptography-3.2.1-6.0.1.el8.aarch64.rpm	3d167d87fe494be74782876764715587e7f50e29d0a7216270b819a88ffeb99e	-	ol8_aarch64_u9_baseos_patch

Oracle Linux 8 (x86_64)	python-cryptography-3.2.1-6.0.1.el8.src.rpm	f44d06b349086b99f3485315d80ce6875556ed1ce17f1ce43c6447aae8467ea3	-	ol8_x86_64_baseos_latest
	python-cryptography-3.2.1-6.0.1.el8.src.rpm	f44d06b349086b99f3485315d80ce6875556ed1ce17f1ce43c6447aae8467ea3	-	ol8_x86_64_u9_baseos_patch
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_23.1.11.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_23.1.12.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.10.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.5.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.6.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_24.1.9.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_25.1.0.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_25.1.1.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_25.1.2.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	exadata_dbserver_25.1.3.0.0_x86_64_base
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	ol8_x86_64_baseos_latest
	python3-cryptography-3.2.1-6.0.1.el8.x86_64.rpm	3922998c77489c0cd82c7e735d7d36d018b8c54410fe3cf469e0e69906101471	-	ol8_x86_64_u9_baseos_patch

Oracle Linux 9 (aarch64)	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_aarch64_appstream
	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_aarch64_baseos_latest
	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_aarch64_u4_baseos_base
	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_aarch64_u5_baseos_base
	python3-cryptography-36.0.1-4.0.1.el9.aarch64.rpm	bd9026958634ce775d1d8f85c54aa62dd51e533bf5d400c30377308e46a86c74	-	ol9_aarch64_appstream
	python3-cryptography-36.0.1-4.0.1.el9.aarch64.rpm	bd9026958634ce775d1d8f85c54aa62dd51e533bf5d400c30377308e46a86c74	-	ol9_aarch64_baseos_latest
	python3-cryptography-36.0.1-4.0.1.el9.aarch64.rpm	bd9026958634ce775d1d8f85c54aa62dd51e533bf5d400c30377308e46a86c74	-	ol9_aarch64_u4_baseos_base
	python3-cryptography-36.0.1-4.0.1.el9.aarch64.rpm	bd9026958634ce775d1d8f85c54aa62dd51e533bf5d400c30377308e46a86c74	-	ol9_aarch64_u5_baseos_base

Oracle Linux 9 (x86_64)	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_x86_64_appstream
	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_x86_64_baseos_latest
	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_x86_64_u4_baseos_base
	python-cryptography-36.0.1-4.0.1.el9.src.rpm	40b5ba01ab6fdeb6137f930940bd37870ee96f12b693a73db7fd81a651e2c9be	-	ol9_x86_64_u5_baseos_base
	python3-cryptography-36.0.1-4.0.1.el9.x86_64.rpm	3c87e8a6071bda1dadc12e6f96e38c7bdda1f02a09bef6510ac26935243c5a42	-	ol9_x86_64_appstream
	python3-cryptography-36.0.1-4.0.1.el9.x86_64.rpm	3c87e8a6071bda1dadc12e6f96e38c7bdda1f02a09bef6510ac26935243c5a42	-	ol9_x86_64_baseos_latest
	python3-cryptography-36.0.1-4.0.1.el9.x86_64.rpm	3c87e8a6071bda1dadc12e6f96e38c7bdda1f02a09bef6510ac26935243c5a42	-	ol9_x86_64_u4_baseos_base
	python3-cryptography-36.0.1-4.0.1.el9.x86_64.rpm	3c87e8a6071bda1dadc12e6f96e38c7bdda1f02a09bef6510ac26935243c5a42	-	ol9_x86_64_u5_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691