Bump. -- You received this bug notification because you are a member of FreeIPA, which is subscribed to python-jwcrypto in Ubuntu. https://bugs.launchpad.net/bugs/1717356
Title: CVE-2016-6298 Status in python-jwcrypto package in Ubuntu: In Progress Bug description: The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack (MMA). https://people.canonical.com/~ubuntu- security/cve/2016/CVE-2016-6298.html To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/python-jwcrypto/+bug/1717356/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~freeipa Post to : freeipa@lists.launchpad.net Unsubscribe : https://launchpad.net/~freeipa More help : https://help.launchpad.net/ListHelp
