From paul.l.kehrer at gmail.com Thu Feb 15 22:56:29 2024 From: paul.l.kehrer at gmail.com (Paul Kehrer) Date: Thu, 15 Feb 2024 19:56:29 -0800 Subject: [Cryptography-dev] PyCA cryptography 42.0.3 released Message-ID: PyCA cryptography 42.0.3 has been released to PyPI. cryptography includes both high level recipes and low level interfaces to common cryptographic algorithms such as symmetric ciphers, asymmetric algorithms, message digests, X509, key derivation functions, and much more. We support Python 3.7+, and PyPy3 7.3.10+. Changelog (https://cryptography.io/en/latest/changelog/#v42-0-3): * Fixed an initialization issue that caused key loading failures for some users. -Paul Kehrer (reaperhulk) From alex.gaynor at gmail.com Tue Feb 20 22:08:47 2024 From: alex.gaynor at gmail.com (Alex Gaynor) Date: Tue, 20 Feb 2024 22:08:47 -0500 Subject: [Cryptography-dev] PyCA cryptography 42.0.4 released Message-ID: PyCA cryptography 42.0.3 has been released to PyPI. cryptography includes both high level recipes and low level interfaces to common cryptographic algorithms such as symmetric ciphers, asymmetric algorithms, message digests, X509, key derivation functions, and much more. We support Python 3.7+, and PyPy3 7.3.10+. Changelog (https://cryptography.io/en/latest/changelog/#v42-0-4): * Fixed a null-pointer-dereference and segfault that could occur when creating a PKCS#12 bundle. Credit to **Alexander-Programming** for reporting the issue. **CVE-2024-26130** * Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields ``SMIMECapabilities`` and ``SignatureAlgorithmIdentifier`` should now be correctly encoded according to the definitions in :rfc:`2633` :rfc:`3370`. Alex -- All that is necessary for evil to succeed is for good people to do nothing. From paul.l.kehrer at gmail.com Fri Feb 23 20:16:37 2024 From: paul.l.kehrer at gmail.com (Paul Kehrer) Date: Fri, 23 Feb 2024 19:16:37 -0600 Subject: [Cryptography-dev] PyCA cryptography 42.0.5 released Message-ID: PyCA cryptography 42.0.5 has been released to PyPI. cryptography includes both high level recipes and low level interfaces to common cryptographic algorithms such as symmetric ciphers, asymmetric algorithms, message digests, X509, key derivation functions, and much more. We support Python 3.7+, and PyPy3 7.3.10+. Changelog (https://cryptography.io/en/latest/changelog/#v42-0-5): * Limit the number of name constraint checks that will be performed in X.509 path validation to protect against denial of service attacks. * Upgrade pyo3 version, which fixes building on PowerPC. -Paul Kehrer (reaperhulk)