Vulnerability Database
Blog
FAQ
Docs
Vulnerability Library
search
All ecosystems
149405
AlmaLinux
3014
Alpine
3485
Android
898
Bitnami
4275
Chainguard
13046
CRAN
10
crates.io
1403
Debian
16400
GIT
29013
GitHub Actions
16
Go
2579
Hackage
18
Hex
30
Linux
13573
Maven
4967
npm
17855
NuGet
1334
OSS-Fuzz
3372
Packagist
3948
Pub
8
PyPI
13756
Rocky Linux
1315
RubyGems
1585
SwiftURL
31
Ubuntu
5337
Wolfi
8137
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-6vqw-3v5j-54x4
PyPI/cryptography
cryptography NULL pointer dereference with pkcs12.serialize_key_and_certificates when called with a non-matching certificate and private key and an hmac_hash override
21 Feb
Fix available
Severity - 7.5 (High)
GHSA-3ww4-gg4f-jr7f
PyPI/cryptography
Python Cryptography package vulnerable to Bleichenbacher timing oracle attack
05 Feb
Fix available
Severity - 7.5 (High)
GHSA-9v9h-cgj8-h64p
PyPI/cryptography
Null pointer dereference in PKCS12 parsing
26 Jan
Fix available
Severity - 5.5 (Medium)
PYSEC-2023-254
github.com/pyca/cryptography
PyPI/cryptography
See record for full details
29 Nov 2023
Fix available
Severity - 7.5 (High)
GHSA-jfhm-5ghh-2f97
PyPI/cryptography
cryptography vulnerable to NULL-dereference when loading PKCS7 certificates
28 Nov 2023
Fix available
Severity - 5.9 (Medium)
GHSA-v8gr-m533-ghj9
PyPI/cryptography
Vulnerable OpenSSL included in cryptography wheels
21 Sep 2023
Fix available
GHSA-jm77-qphf-c4w8
PyPI/cryptography
pyca/cryptography's wheels include vulnerable OpenSSL
01 Aug 2023
Fix available
GHSA-cf7p-gm2m-833m
PyPI/cryptography
cryptography mishandles SSH certificates
14 Jul 2023
Fix available
Severity - 7.5 (High)
PYSEC-2023-112
PyPI/cryptography
See record for full details
14 Jul 2023
Fix available
GHSA-5cpq-8wj7-hf2v
PyPI/cryptography
Vulnerable OpenSSL included in cryptography wheels
02 Jun 2023
Fix available
GHSA-x4qr-2fvf-3mr5
PyPI/cryptography
crates.io/openssl-src
Vulnerable OpenSSL included in cryptography wheels
08 Feb 2023
Fix available
Severity - 7.4 (High)
GHSA-w7pp-m8wf-vj6r
PyPI/cryptography
Cipher.update_into can corrupt memory if passed an immutable python object as the outbuf
07 Feb 2023
Fix available
Severity - 6.5 (Medium)
GHSA-39hc-v87j-747x
PyPI/cryptography
Vulnerable OpenSSL included in cryptography wheels
02 Nov 2022
Fix available
GHSA-q3cj-2r34-2cwc
PyPI/cryptography
Improper input validation in cryptography
17 May 2022
Fix available
Severity - 7.5 (High)
GHSA-rhm9-p9w5-fwm7
PyPI/cryptography
PyCA Cryptography symmetrically encrypting large values can lead to integer overflow
10 Feb 2021
Fix available
Severity - 9.1 (Critical)
PYSEC-2021-63
PyPI/cryptography
See record for full details
07 Feb 2021
Fix available
Load more...
(1 page left)
PyPI - OSV