Back to bug 2171817
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Maxwell G | 2023-02-20 19:40:02 UTC | CC | apevec, bbuckingham, bcoca, bcourt, btotty, cheimes, cwelton, davidn, eglynn, ehelms, epacific, gtanzill | |
| CC | , hhorak, jcammara, jhardy, jjoyce, jneedle, jobarker, jorton, jsherril, lhh, lzap, mabashia, mburns, mgarciac | |||
| CC | , mhulan, mminar, myarboro, nmoumoul, orabin, osapryki, pcreech, python-maint, rbiba, rchan, rhos-maint | |||
| CC | , simaishi, smcdonal, spower, sskracic, teagle, yguenane, zsadeh | |||
| Depends On | 2171820 | |||
| Depends On | 2171821, 2171823, 2171822 | |||
| Depends On | 2171826 | |||
| CC | asoldano, bbaranow, bdettelb, bmaxwell, brian.stansberry, cdewolf, chazlett, cluster-maint, darran.lofthouse, dkreling, dosoudil | |||
| CC | , fjuma, ivassile, iweiss, jkoehler, lgao, mosmerov, msochure, msvehla, nwallace, oalbrigt, pjindal, pmackay | |||
| CC | , rstancel, smaestri, tom.jenkinson, torsava | |||
| CC | asoldano, bbaranow, bmaxwell, brian.stansberry, cdewolf, chazlett, darran.lofthouse, dkreling, dosoudil, fjuma, ivassile | |||
| CC | , iweiss, lgao, mosmerov, msochure, msvehla, nwallace, pjindal, pmackay, rstancel, smaestri, tom.jenkinson | |||
| Depends On | 2171831 | |||
| CC | maxwell | |||
| Christian Heimes | 2023-02-22 07:44:59 UTC | Link ID | Github pyca/cryptography/pull/8230 | |
| Tomas Orsava | 2023-02-22 14:37:39 UTC | Flags | needinfo?(ybuenos) | |
| Borja Tarraso | 2023-02-23 14:34:05 UTC | CC | adudiak, kshier, stcannon, tfister | |
| Red Hat Bugzilla | 2023-03-02 08:27:29 UTC | Depends On | 2173564, 2173566, 2173565 | |
| Depends On | 2173568, 2173569 | |||
| Flags | needinfo?(ybuenos) | |||
| CC | asoldano, bbaranow, bmaxwell, brian.stansberry, cdewolf, chazlett, darran.lofthouse, dkreling, dosoudil, fjuma, ivassile | |||
| CC | , iweiss, lgao, mosmerov, msochure, msvehla, nwallace, pjindal, pmackay, rstancel, smaestri, tom.jenkinson | |||
| Depends On | 2173656, 2173644, 2173664, 2173643, 2173658, 2173655, 2173657, 2173663, 2173653, 2173659, 2173650, 2173661, 2173645, 2173649, 2173660, 2173662, 2173652, 2173646, 2173651, 2173654, 2173647, 2173648 | |||
| CC | myarboro | |||
| Sandipan Roy | 2023-03-03 07:58:54 UTC | CC | cluster-maint, oalbrigt | |
| Sandipan Roy | 2023-03-03 08:00:43 UTC | Depends On | 2175093, 2175092, 2175090, 2175091 | |
| Sandipan Roy | 2023-03-03 08:02:24 UTC | Depends On | 2175094 | |
| Maxwell G | 2023-03-03 16:52:15 UTC | CC | maxwell | |
| Sandipan Roy | 2023-03-07 08:13:14 UTC | Doc Text | A vulnerability was found in python-cryptography. In affected versions `Cipher.update_into` would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable objects (such as `bytes`) to be mutated, thus violating fundamental rules of Python and resulting in corrupted output. This now correctly raises an exception. | |
| RaTasha Tillery-Smith | 2023-03-07 17:06:45 UTC | Doc Text | A vulnerability was found in python-cryptography. In affected versions `Cipher.update_into` would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable objects (such as `bytes`) to be mutated, thus violating fundamental rules of Python and resulting in corrupted output. This now correctly raises an exception. | A vulnerability was found in python-cryptography. In affected versions, `Cipher.update_into` would accept Python objects which implement the buffer protocol but provide only immutable buffers. This issue allows immutable objects (such as `bytes`) to be mutated, thus violating the fundamental rules of Python, resulting in corrupted output. |
| Red Hat Bugzilla | 2023-05-15 20:19:12 UTC | CC | bbuckingham, bcourt, ehelms, jsherril, lzap, mhulan, nmoumoul, orabin, pcreech, rchan | |
| CC | btotty | |||
| Red Hat Bugzilla | 2023-07-07 08:31:43 UTC | Assignee | security-response-team | nobody |
| Florence Blanc-Renaud | 2023-07-31 13:16:10 UTC | Depends On | 2172399 | |
| Florence Blanc-Renaud | 2023-07-31 13:19:59 UTC | Depends On | 2172404 |
Back to bug 2171817