Package: python3-cryptography Version: 2.6.1-3 Severity: important tags: fixed-upstream
python3-cryptography version shipped with buster suffers from a memory leak that's already been fixed by upstream[1] on version 2.7. This leak is triggeable with real workloads like it can been seen here[2]. TL;DR code parsing x509 certificate extensions like Authority Information Access or Subject Alternative Name triggers the issue. It could be great if [1] could be backported to solve the bug. Thanks! Valentin Gutierrez [1] => https://github.com/pyca/cryptography/commit/9a22851fab924fd58482fdad3f8dd23dc3987f91 [2] => https://phabricator.wikimedia.org/T234131
