ELSA-2026-19042

ELSA-2026-19042 - python-jwcrypto security update

Type:SECURITY
Impact:LOW
Release Date:2026-07-08

Description


[1.5.6-5]
- Fix CVE-2026-39373: Memory exhaustion via crafted compressed JWE tokens


Related CVEs


CVE-2026-39373

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) python-jwcrypto-1.5.6-5.el10_2.src.rpmb36280ac217b8ae9deb63810f4dc50e0284fc2288ca62c7707de56e07196918c-ol10_aarch64_appstream
python3-jwcrypto-1.5.6-5.el10_2.noarch.rpmb8ed169f602b30c39721ef01e7c9a4d21b9aab617e467fde22fb02e774cca4d6-ol10_aarch64_appstream
Oracle Linux 10 (x86_64) python-jwcrypto-1.5.6-5.el10_2.src.rpmb36280ac217b8ae9deb63810f4dc50e0284fc2288ca62c7707de56e07196918c-ol10_x86_64_appstream
python3-jwcrypto-1.5.6-5.el10_2.noarch.rpmb8ed169f602b30c39721ef01e7c9a4d21b9aab617e467fde22fb02e774cca4d6-ol10_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete