MGASA-2020-0438 - Updated python-cryptography packages fix security vulnerability Publication date: 23 Nov 2020 URL: https://advisories.mageia.org/MGASA-2020-0438.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-25659 Hubert Kario discovered that python-cryptography incorrectly handled certain decryption. An attacker could possibly use this issue to expose sensitive information (CVE-2020-25659). References: - https://bugs.mageia.org/show_bug.cgi?id=27567 - https://ubuntu.com/security/notices/USN-4613-1 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25659 SRPMS: - 7/core/python-cryptography-2.6.1-2.mga7
Mageia 2020-0438: python-cryptography security update
Hubert Kario discovered that python-cryptography incorrectly handled certain decryption
Summary
CVE: CVE-2020-25659
Hubert Kario discovered that python-cryptography incorrectly handled certain
decryption. An attacker could possibly use this issue to expose sensitive
information (CVE-2020-25659).
Resolution
MGASA-2020-0438 - Updated python-cryptography packages fix security vulnerability
References
- https://bugs.mageia.org/show_bug.cgi?id=27567
- https://ubuntu.com/security/notices/USN-4613-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25659
Severity
Issued Date: 23 Nov 2020
URL: https://advisories.mageia.org/MGASA-2020-0438.html
Type: security
Affected Mageia releases: 7
News
HOWTOs
Features
Secure Linux Hosting for Businesses
What Is Threat Intelligence?
CloudLinux Simplifies & Enhances Linux Security with its TuxCare Unified Enterprise Support Services
LinuxSecurity, Leading Provider of Linux Security News and Information, Unveils its New Website
Biden’s New Executive Cybersecurity Order Highlights the Power of Open-Source Security
About Us
Powered By
