PYSEC-2017-50

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/lemur/PYSEC-2017-50.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2017-50
Aliases
Published
2017-08-09T16:29:00Z
Modified
2026-06-10T17:02:00.314087755Z
Summary
[none]
Details

Lemur 0.1.4 does not use sufficient entropy in its IV when encrypting AES in CBC mode.

References

Affected packages

PyPI / lemur

Package

Name
lemur
View open source insights on deps.dev
Purl
pkg:pypi/lemur

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.1

Database specific

source 
"https://github.com/pypa/advisory-database/blob/main/vulns/lemur/PYSEC-2017-50.yaml"