** Also affects: python-jwcrypto (Ubuntu Xenial)
Importance: Undecided
Status: New
** Changed in: python-jwcrypto (Ubuntu Xenial)
Assignee: (unassigned) => Brian Morton (rokclimb15)
** Changed in: python-jwcrypto (Ubuntu)
Status: In Progress => Fix Released
** Changed in: python-jwcrypto (Ubuntu)
Assignee: Brian Morton (rokclimb15) => (unassigned)
--
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1717356
Title:
CVE-2016-6298
Status in python-jwcrypto package in Ubuntu:
Fix Released
Status in python-jwcrypto source package in Xenial:
New
Bug description:
The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in
jwcrypto before 0.3.2 lacks the Random Filling protection mechanism,
which makes it easier for remote attackers to obtain cleartext data
via a Million Message Attack (MMA).
https://people.canonical.com/~ubuntu-
security/cve/2016/CVE-2016-6298.html
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/python-jwcrypto/+bug/1717356/+subscriptions
_______________________________________________
Mailing list: https://launchpad.net/~group.of.nepali.translators
Post to : group.of.nepali.translators@lists.launchpad.net
Unsubscribe : https://launchpad.net/~group.of.nepali.translators
More help : https://help.launchpad.net/ListHelp
