Nixpkgs security tracker
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
14 packages
- python312Packages.django-cryptography
- python313Packages.django-cryptography
- python314Packages.django-cryptography
- python312Packages.mypy-boto3-payment-cryptography
- python313Packages.mypy-boto3-payment-cryptography
- python314Packages.mypy-boto3-payment-cryptography
- python312Packages.mypy-boto3-payment-cryptography-data
- python313Packages.mypy-boto3-payment-cryptography-data
- python314Packages.mypy-boto3-payment-cryptography-data
- python312Packages.types-aiobotocore-payment-cryptography
- python313Packages.types-aiobotocore-payment-cryptography
- python312Packages.types-aiobotocore-payment-cryptography-data
- python314Packages.cryptography
- python313Packages.types-aiobotocore-payment-cryptography-data
- @LeSuisse restored package python314Packages.cryptography
-
@LeSuisse
deleted
maintainer.delete
2 maintainers
- @SuperSandro2000
- @mdaniels5757
- @LeSuisse accepted
- @LeSuisse published on GitHub
cryptography has incomplete DNS name constraint enforcement on peer names
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography would allow a peer named bar.example.com to validate against a wildcard leaf certificate for *.example.com, even if the leaf's parent certificate (or upwards) contained an excluded subtree constraint for bar.example.com. This issue has been patched in version 46.0.6.
References
-
https://github.com/pyca/cryptography/security/advisories/GHSA-m959-cc7f-wv43 x_refsource_CONFIRM
Affected products
- ==< 46.0.6
Matching in nixpkgs
pkgs.python312Packages.cryptography
None
pkgs.python313Packages.cryptography
Package which provides cryptographic recipes and primitives
pkgs.python314Packages.cryptography
Package which provides cryptographic recipes and primitives
Ignored packages (13)
pkgs.python312Packages.django-cryptography
None
pkgs.python313Packages.django-cryptography
Set of primitives for performing cryptography in Django
-
nixos-unstable 1.1-unstable-2024-02-16
- nixpkgs-unstable 1.1-unstable-2024-02-16
- nixos-unstable-small 1.1-unstable-2024-02-16
pkgs.python314Packages.django-cryptography
Set of primitives for performing cryptography in Django
-
nixos-unstable 1.1-unstable-2024-02-16
- nixpkgs-unstable 1.1-unstable-2024-02-16
- nixos-unstable-small 1.1-unstable-2024-02-16
pkgs.python313Packages.mypy-boto3-payment-cryptography
Type annotations for boto3 payment-cryptography
-
nixos-unstable boto3-payment-cryptography-1.42.12
- nixpkgs-unstable boto3-payment-cryptography-1.42.12
- nixos-unstable-small boto3-payment-cryptography-1.42.12
pkgs.python314Packages.mypy-boto3-payment-cryptography
Type annotations for boto3 payment-cryptography
-
nixos-unstable boto3-payment-cryptography-1.42.12
- nixpkgs-unstable boto3-payment-cryptography-1.42.12
- nixos-unstable-small boto3-payment-cryptography-1.42.12
pkgs.python313Packages.mypy-boto3-payment-cryptography-data
Type annotations for boto3 payment-cryptography-data
-
nixos-unstable boto3-payment-cryptography-data-1.42.12
- nixpkgs-unstable boto3-payment-cryptography-data-1.42.12
- nixos-unstable-small boto3-payment-cryptography-data-1.42.12
pkgs.python314Packages.mypy-boto3-payment-cryptography-data
Type annotations for boto3 payment-cryptography-data
-
nixos-unstable boto3-payment-cryptography-data-1.42.12
- nixpkgs-unstable boto3-payment-cryptography-data-1.42.12
- nixos-unstable-small boto3-payment-cryptography-data-1.42.12
pkgs.python313Packages.types-aiobotocore-payment-cryptography
Type annotations for aiobotocore payment-cryptography
pkgs.python313Packages.types-aiobotocore-payment-cryptography-data
Type annotations for aiobotocore payment-cryptography-data
Package maintainers
Ignored maintainers (1)
-
@mdaniels5757 Michael Daniels <nix@mdaniels.me>