Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-33663HistoryApr 26, 2024 - 12:15 a.m.
CVE-2024-33663
2024-04-2600:15:09
Debian Security Bug Tracker
security-tracker.debian.org
5
cve-2024-33663
algorithm confusion
openssh
ecdsa
key formats
unix
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | python-jose | <=ย 3.3.0+dfsg-4 | python-jose_3.3.0+dfsg-4_all.deb |
| Debian | 999 | all | python-jose | <=ย 3.3.0+dfsg-5 | python-jose_3.3.0+dfsg-5_all.deb |
| Debian | 13 | all | python-jose | <=ย 3.3.0+dfsg-5 | python-jose_3.3.0+dfsg-5_all.deb |
Related
cve
cve
CVE-2024-33663
2024-04-26 00:15:09
CVE-2022-29217
2022-05-24 15:15:00
cvelist
cvelist
CVE-2024-33663
2024-04-25 00:00:00
Key confusion through non-blocklisted public key formats in PyJWT
2022-05-24 14:10:10
github
github
python-jose algorithm confusion with OpenSSH ECDSA keys
2024-04-26 00:30:35
Key confusion through non-blocklisted public key formats
2022-05-24 22:17:27
ubuntucve
ubuntucve
CVE-2024-33663
2024-04-26 00:00:00
CVE-2022-29217
2022-05-24 00:00:00
redhatcve
redhatcve
CVE-2024-33663
2024-04-26 06:04:23
CVE-2022-29217
2022-05-25 02:21:09
osv
osv
CVE-2024-33663
2024-04-26 00:15:09
python-jose algorithm confusion with OpenSSH ECDSA keys
2024-04-26 00:30:35
Key confusion through non-blocklisted public key formats
2022-05-24 22:17:27
nessus
nessus
openSUSE 15 Security Update : python-python-jose (openSUSE-SU-2024:0118-1)
2024-05-08 00:00:00
EulerOS 2.0 SP9 : python-jwt (EulerOS-SA-2022-2302)
2022-09-14 00:00:00
SUSE SLES15 Security Update : python-PyJWT (SUSE-SU-2022:2403-1)
2022-07-15 00:00:00
veracode
veracode
Improper Signature Validation
2024-04-29 06:33:23
Authentication Bypass
2022-05-25 07:35:03
suse
suse
Security update for python-PyJWT (important)
2022-07-14 00:00:00
prion
prion
Code injection
2022-05-24 15:15:00
openvas
openvas
Ubuntu: Security Advisory (USN-5526-1)
2022-07-21 00:00:00
openSUSE: Security Advisory for python-PyJWT (SUSE-SU-2022:2402-1)
2022-07-15 00:00:00
Fedora: Security Advisory for python-jwt (FEDORA-2022-3cf456dc20)
2022-05-28 00:00:00
ubuntu
ubuntu
PyJWT vulnerability
2022-07-20 00:00:00
debiancve
debiancve
CVE-2022-29217
2022-05-24 15:15:00
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in PyJWT
2022-08-03 19:34:31
Security Bulletin: Multiple vulnerabilities affect IBM Db2 On Openshift, IBM Db2ยฎ on Cloud Pak for Data and Db2 Warehouseยฎ on Cloud Pak for Data
2022-10-27 15:10:28
Security Bulletin: Multiple Vulnerabilities in Cloud Pak for Watson AIOPs
2022-10-03 18:44:01
cbl_mariner
cbl_mariner
CVE-2022-29217 affecting package python-jwt for versions less than 2.4.0-1
2022-06-26 03:29:33
CVE-2022-29217 affecting package python-jwt 1.7.1-9
2022-07-14 20:59:55
fedora
fedora
[SECURITY] Fedora 35 Update: python-jwt-2.4.0-1.fc35
2022-06-01 01:27:09
[SECURITY] Fedora 36 Update: python-jwt-2.4.0-1.fc36
2022-05-27 01:10:44
alpinelinux
alpinelinux
CVE-2022-29217
2022-05-24 15:15:00
mageia
mageia
Updated python-pyjwt packages fix security vulnerability
2022-07-01 00:31:09