4 matches found
SUSE-SU-2026:21126-1 Security update for python-cryptography
This update for python-cryptography fixes the following issues: - CVE-2026-34073: Fixed X.509 bypass of name constraints on wildcard SANs with matching peer names. bsc1260876...
BELL-CVE-2026-34073
Bulletin has no description...
CVE-2026-34073
creationtimestamp| type| source ---|---|--- 2026-03-30 11:21:57+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mibkbiczt22x 2026-03-30 20:21:48+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3micigudoxo2s...
SUSE CVE-2026-34073
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...