py-bcrypt is vulnerable to Improper Access Control. The vulnerability exists due to improper handling of concurrent memory access in py-bcrypt module which triggers password hash overwriting, allowing an attacker to bypass security restrictions.
lists.fedoraproject.org/pipermail/package-announce/2013-April/101382.html
lists.fedoraproject.org/pipermail/package-announce/2013-April/101387.html
www.openwall.com/lists/oss-security/2013/03/26/2
www.securityfocus.com/bid/58702
bugzilla.redhat.com/show_bug.cgi?id=927510
exchange.xforce.ibmcloud.com/vulnerabilities/83039
lists.fedoraproject.org/pipermail/package-announce/2013-April/101382.html