It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "python3-pycryptodome", "binary_version": "3.11.0+dfsg1-3ubuntu0.1" } ] }