{"affected":[{"ecosystem_specific":{"binaries":[{"python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP3","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 2 15 SP3","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-ESPOS","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-BCL","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-LTSS","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP2","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Manager Proxy 4.1","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Manager%20Proxy%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Manager Retail Branch Server 4.1","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Manager Server 4.1","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Manager%20Server%204.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.1","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Micro%205.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.2","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Linux%20Enterprise%20Micro%205.2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"SUSE:Enterprise Storage 7","name":"python-cryptography","purl":"pkg:rpm/suse/python-cryptography&distro=SUSE%20Enterprise%20Storage%207"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-cryptography":"2.9.2-150200.13.1"}]},"package":{"ecosystem":"openSUSE:Leap Micro 5.2","name":"python-cryptography","purl":"pkg:rpm/opensuse/python-cryptography&distro=openSUSE%20Leap%20Micro%205.2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python2-cryptography-vectors":"2.9.2-150200.3.3.1","python3-cryptography":"2.9.2-150200.13.1","python3-cryptography-vectors":"2.9.2-150200.3.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"python-cryptography","purl":"pkg:rpm/opensuse/python-cryptography&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-cryptography":"2.9.2-150200.13.1","python2-cryptography-vectors":"2.9.2-150200.3.3.1","python3-cryptography":"2.9.2-150200.13.1","python3-cryptography-vectors":"2.9.2-150200.3.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"python-cryptography-vectors","purl":"pkg:rpm/opensuse/python-cryptography-vectors&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.2-150200.3.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python-cryptography, python-cryptography-vectors fixes the following issues:\n\n- Update in SLE-15 (bsc#1177083, jsc#PM-2730, jsc#SLE-18312)\n- Refresh patches for new version\n- Update in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352)\n- update to 2.9.2\n  * 2.9.2 - 2020-04-22\n    - Updated the macOS wheel to fix an issue where it would not run on macOS versions older than 10.15.\n  * 2.9.1 - 2020-04-21\n    - Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1g.\n  * 2.9 - 2020-04-02\n    - BACKWARDS INCOMPATIBLE: Support for Python 3.4 has been removed due to\n      low usage and maintenance burden.\n    - BACKWARDS INCOMPATIBLE: Support for OpenSSL 1.0.1 has been removed.\n      Users on older version of OpenSSL will need to upgrade.\n    - BACKWARDS INCOMPATIBLE: Support for LibreSSL 2.6.x has been removed.\n    - Removed support for calling public_bytes() with no arguments, as per \n      our deprecation policy. You must now pass encoding and format.\n    - BACKWARDS INCOMPATIBLE: Reversed the order in which rfc4514_string()\n      returns the RDNs as required by RFC 4514.\n    - Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1f.\n    - Added support for parsing single_extensions in an OCSP response.\n    - NameAttribute values can now be empty strings.\n\n- Add openSSL_111d.patch to make this version of the package\n  compatible with OpenSSL 1.1.1d, thus fixing bsc#1149792.\n\n- bsc#1101820 CVE-2018-10903 GCM tag forgery via truncated tag in\n  finalize_with_tag API\n- Update in SLE-15 (bsc#1177083, jsc#PM-2730, jsc#SLE-18312)\n- Include in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352)\n- update to 2.9.2:\n  * updated vectors for the cryptography 2.9.2 testing\n","id":"SUSE-SU-2022:4044-1","modified":"2022-11-17T08:07:35Z","published":"2022-11-17T08:07:35Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224044-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1101820"},{"type":"REPORT","url":"https://bugzilla.suse.com/1149792"},{"type":"REPORT","url":"https://bugzilla.suse.com/1176785"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177083"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-10903"}],"related":["CVE-2018-10903"],"summary":"Security update for python-cryptography, python-cryptography-vectors","upstream":["CVE-2018-10903"]}