Mageia: Security Advisory (MGASA-2016-0377)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2021-2428)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2021-1837)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : python-cryptography (EulerOS-SA-2021-1837)

According to the version of the python-cryptography package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize.CVE-2016-9243 Note...

CVE-2016-9243

HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize...

CVE-2016-9243

CVE-2016-9243 affects the python-cryptography HKDF implementation. The vulnerability is that HKDF in cryptography before 1.5.2/1.5.3 returns an empty byte-string when used with a length shorter than algorithm.digest_size. Public-era advisories (Ubuntu USN-3138-1, Fedora FEDORA-2016-d3a2b640ce, De...

Fedora Update for python-cryptography FEDORA-2016-2d90e27e50

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for python-cryptography FEDORA-2016-e77c8c1f3b

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for python-cryptography FEDORA-2016-d3a2b640ce

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 24 : python-cryptography / python-cryptography-vectors (2016-d3a2b640ce)

Rebase to 1.5.3 to fix CVE-2016-9243 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 23 : python-cryptography / python-cryptography-vectors (2016-e77c8c1f3b)

Rebase to 1.5.3 to fix CVE-2016-9243 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 25 : python-cryptography / python-cryptography-vectors (2016-2d90e27e50)

Rebase to 1.5.3 to fix CVE-2016-9243 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Updated python-cryptography package fixes security vulnerability

Fixed a bug where HKDF would return an empty byte-string if used with a length less than algorithm.digestsize. CVE-2016-9243...

CVE-2016-9243

HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize...