USN-8087-1: python-cryptography vulnerability

It was discovered that python-cryptography incorrectly handled subgroup validation for SECT curves. A remote attacker could use this issue to perform a subgroup attack and possibly recover the least significant bits of private keys...

SUSE-SU-2026:20655-1 Security update for python-cryptography

This update for python-cryptography fixes the following issues: - CVE-2026-26007: missing validation can lead to security issues for signature verification ECDSA and shared key negotiation ECDH bsc1258074...

CVE-2026-26007 affecting package python-cryptography for versions less than 42.0.5-4

CVE-2026-26007 affecting package python-cryptography for versions less than 42.0.5-4. A patched version of the package is available...

AZL-77447 CVE-2026-26007 affecting package python-cryptography 3.3.2-7

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

MiracleLinux 9 : python-cryptography-36.0.1-4.el9 (AXSA:2023-6725:03)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6725:03 advisory. python-cryptography: memory corruption via immutable objects CVE-2023-23931 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : python-cryptography-3.2.1-4.el8 (AXSA:2021-2026:02)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2026:02 advisory. python-cryptography: bleichenbacher timing oracle attack against RSA decryption CVE-2020-25659 python-cryptography: certain sequences of update call...

MiracleLinux 8 : python-cryptography-3.2.1-6.el8 (AXSA:2023-7257:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7257:04 advisory. python-cryptography: memory corruption via immutable objects CVE-2023-23931 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : python39:3.9 and python39-devel:3.9 (AXSA:2024-8429:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8429:01 advisory. pypa-setuptools: Regular Expression Denial of Service ReDoS in packageindex.py CVE-2022-40897 python-cryptography: memory corruption via immutable...

MiracleLinux 9 : python3.11-cryptography-37.0.2-6.el9 (AXSA:2024-7976:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7976:01 advisory. python-cryptography: NULL-dereference when loading PKCS7 certificates CVE-2023-49083 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : python3.12-cryptography-41.0.7-2.el9 (AXSA:2025-10071:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10071:01 advisory. rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : python3.12-cryptography-41.0.7-2.el9_6.1 (AXSA:2025-10844:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10844:02 advisory. python-cryptography: NULL pointer dereference with pkcs12.serializekeyandcertificates when called with a non-matching certificate and private key and an...

MiracleLinux 8 : python-cryptography-3.2.1-8.el8_10 (AXSA:2025-10797:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10797:01 advisory. python-cryptography: NULL-dereference when loading PKCS7 certificates CVE-2023-49083 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : python-cryptography-36.0.1-5.el9_6 (AXSA:2025-10863:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10863:02 advisory. python-cryptography: NULL-dereference when loading PKCS7 certificates CVE-2023-49083 Tenable has extracted the preceding description block directly from the...

Security update 5.1.1.1 for Multi-Linux Manager Client Tools

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 CVE-2025-62348: Fixed Junos module yaml loader bsc1254256 Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439...

CLSA-2025-1763137741 python3.11-cryptography: Fix of CVE-2023-49083

CVE-2023-49083: fix crash when loading PKCS7 bundle with no certificates - Fix RUSTFLAGS macro expansion in build process...

TencentOS Server 3: python-cryptography (TSSA-2025:0789)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0789 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

python-cryptography security update

An update is available for python-cryptography. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programmin...

RLSA-2025:15608 Important: python3.12-cryptography security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

python3.12-cryptography security update

An update is available for python3.12-cryptography. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented...

RockyLinux 9 : python-cryptography (RLSA-2025:15874)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:15874 advisory. python-cryptography: NULL-dereference when loading PKCS7 certificates CVE-2023-49083 Tenable has extracted the preceding description block directly from the...