ROS-20250731-01

Vulnerability in the implementation of OAuth request signing logic for Python OAuthLib is due to insufficient user data validation in urivalidate functions. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

NewStart CGSL MAIN 7.02 : python-oauthlib Vulnerability (NS-SA-2025-0151)

The remote NewStart CGSL host, running version MAIN 7.02, has python-oauthlib packages installed that are affected by a vulnerability: - OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redire...

OPENSUSE-SU-2025:15100-1 python311-oauthlib-3.2.2-5.4 on GA media

These are all security issues fixed in the python311-oauthlib-3.2.2-5.4 package on the GA media of openSUSE Tumbleweed...

Fedora 37 : python-oauthlib (2022-5a74a5eea7)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-5a74a5eea7 advisory. - Update spec file and sources for 3.2.1 - Fixes CVE-2022-36087 Tenable has extracted the preceding description block directly from the Fedora security...

CentOS 9 : python-oauthlib-3.1.1-5.el9

The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the python- oauthlib-3.1.1-5.el9 build changelog. - OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker...

Fedora 39 : python-oauthlib (2023-da094276a2)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-da094276a2 advisory. Security fix for CVE-2022-36087 https://github.com/advisories/GHSA-3pgj-pg6c-r5p7 Tenable has extracted the preceding description block directly from the...

Fedora: Security Advisory for python-oauthlib (FEDORA-2023-5ab7049a59)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 38 : python-oauthlib (2023-5ab7049a59)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-5ab7049a59 advisory. Security fix for CVE-2022-36087 https://github.com/advisories/GHSA-3pgj-pg6c-r5p7 Tenable has extracted the preceding description block directly from the...

Fedora: Security Advisory for python-oauthlib (FEDORA-2023-49ded4c9a5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 37 : python-oauthlib (2023-49ded4c9a5)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-49ded4c9a5 advisory. Security fix for CVE-2022-36087 https://github.com/advisories/GHSA-3pgj-pg6c-r5p7 Tenable has extracted the preceding description block directly from the...

fence-agents security and bug fix update

4.10.0-43 - fencevmwaresoap: set logintimeout lower than default pcmkmonitortimeout 20s to remove tmp dirs Resolves: rhbz2122944 4.10.0-42 - fencing/fencewti: add --plug-separator to be able to avoid characters that are in node names Resolves: rhbz2152107 4.10.0-41 - fencescsi: skip key generatio...

python-oauthlib: DoS when attacker provides malicious IPV6 URI

A flaw was found in python-oauthlib. This flaw allows an attacker providing a malicious redirect URI to cause a denial of service to OAuthLib's web application...

Huawei EulerOS: Security Advisory for python-oauthlib (EulerOS-SA-2023-1045)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-oauthlib (EulerOS-SA-2023-1020)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : python-oauthlib (EulerOS-SA-2023-1020)

According to the versions of the python-oauthlib package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker...

EulerOS 2.0 SP11 : python-oauthlib (EulerOS-SA-2023-1045)

According to the versions of the python-oauthlib package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker...

Fedora: Security Advisory for python-oauthlib (FEDORA-2022-5a74a5eea7)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

USN-5632-1: OAuthLib vulnerability

Sebastian Chnelik discovered that OAuthLib incorrectly handled certain redirect uris. A remote attacker could possibly use this issue to cause OAuthLib to crash, resulting in a denial of service...

CVE-2022-36087

A flaw was found in python-oauthlib. This flaw allows an attacker providing a malicious redirect URI to cause a denial of service to OAuthLib's web application. Mitigation The redirecturi can be verified in the web toolkit before OAuthLib is called. Check to see if : is present to reject the...

new packages: python-oauthlib

An update is available for python-oauthlib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...