53 matches found
PT-2022-24825 · Pypi · Python-Jwt
Name of the Vulnerable Software and Affected Versions: python-jwt versions prior to 3.3.4 Description: The issue allows an attacker who obtains a JSON Web Token JWT to arbitrarily forge its contents without knowing the secret key. This may enable the attacker to spoof other users' identities,...
CVE-2022-29217 affecting package python-jwt 1.7.1-9
CVE-2022-29217 affecting package python-jwt 1.7.1-9. An upgraded version of the package is available that resolves this issue...
CVE-2022-29217 affecting package python-jwt for versions less than 2.4.0-1
CVE-2022-29217 affecting package python-jwt for versions less than 2.4.0-1. An upgraded version of the package is available that resolves this issue...
Fedora: Security Advisory for python-jwt (FEDORA-2022-4ae9110f51)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for python-jwt (FEDORA-2022-3cf456dc20)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-29217
A vulnerability was found in python-jwt. This issue happens when PyJWT supports multiple different JWT signing algorithms. This flaw allows an attacker submitting the JWT token to choose the used signing algorithm, leading to key confusion through non-blocklisted public key formats...
Fedora 27 : python-jwt (2017-0cc84101de)
Upgrade to 1.5.3 and also note that 1.5.1 fixed CVE-2017-11424. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora Update for python-jwt FEDORA-2017-b9f07dfaca
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : python-jwt (2017-b9f07dfaca)
Upgrade to 1.5.3 and also note that 1.5.1 fixed CVE-2017-11424. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora Update for python-jwt FEDORA-2015-10350
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : python-jwt-1.3.0-1.fc22 (2015-10350)
Latest upstream with security fix for http://seclists.org/oss-sec/2015/q2/3 https://github.com/jpadilla/pyjwt/commit/88a9fc56bdc6c870aa6af93bda401 414a217db2a Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...
Fedora 21 : python-jwt-1.3.0-1.fc21 (2015-10249)
Latest upstream with security fix for http://seclists.org/oss-sec/2015/q2/3 https://github.com/jpadilla/pyjwt/commit/88a9fc56bdc6c870aa6af93bda401 414a217db2a Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...
Fedora Update for python-jwt FEDORA-2015-10249
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...