Advisories » MGASA-2022-0274

Updated python-m2crypto packages fix security vulnerability

Publication date: 05 Aug 2022
Modification date: 05 Aug 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2020-25657

Description

Bleichenbacher timing attacks in the RSA decryption API (CVE-2020-25657)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=30661
• https://lists.suse.com/pipermail/sle-security-updates/2022-July/011631.html
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QEML6RS6UMHDYGJ355BS2ARODQ4OYLRW/
• https://www.cve.org/CVERecord?id=CVE-2020-25657

SRPMS

8/core

• python-m2crypto-0.38.0-4.mga8