PYSEC-2023-112 — Vulnetix

PYSEC-2023-112 PUBLISHED

The cryptography package before 41.0.2 for Python mishandles SSH certificates that have critical options.

Affected Products

Vendor	Product	Versions
PyPI	cryptography	40.0.0, 40.0.0, 40.0.1

Timeline

Jul 14, 2023 CVE Published
Nov 8, 2023 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›