CVE-2020-25659: user/py3-cryptography: RSA decryption timing oracle attack
| Bugzilla ID | 373 |
| Alias(es) | CVE-2020-25659 |
| Reporter | Max Rees (sroracle) |
| Assignee | Max Rees (sroracle) |
| Reported | 2020-11-21 22:28:06 -0600 |
| Modified | 2020-11-21 22:28:06 -0600 |
| Status | UNCONFIRMED |
| Version | 1.0-RC1 |
| Hardware | Adélie Linux / All |
| Importance | --- / normal |
| Package(s) | user/py3-cryptography |
Description
Fixed in >= 3.2 https://github.com/pyca/cryptography/commit/58494b41d6ecb0f56b7c5f05d5f5e3ca0320d494