CVE-2025-59420

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.4, Authlib’s JWS verification accepts tokens that declare unknown critical header parameters crit, violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical...

[SECURITY] Fedora 40 Update: clojure-maven-plugin-1.9.2-6.fc40

This plugin has been designed to make working with clojure as easy as possible, when working in a mixed language, enterprise project...