New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Question: What are the fix patches for CVE-2023-52323? #796

Open

xiaoge1001 opened this issue Jan 18, 2024 · 4 comments

xiaoge1001 commented Jan 18, 2024 •

edited

Loading

I found 26 commits between versions 3.19.0 and 3.19.1. Which ones fix CVE-2023-52323?

My analysis should be the following commit:
afb5e27
519e7ae
0deea1b

In addition, does CVE-2023-52323 provide other information such as POC or issue? The information available is very limited.
https://nvd.nist.gov/vuln/detail/CVE-2023-52323
https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst#3191-28-december-2023
https://www.pycryptodome.org/src/changelog#december-2023

We look forward to your reply. Thanks.

The text was updated successfully, but these errors were encountered:

Author

xiaoge1001 commented Jan 18, 2024

This advisories is associated with the following patch:
0deea1b

Author

xiaoge1001 commented Jan 18, 2024

https://groups.google.com/g/linux.debian.bugs.dist/c/ibzqvtwhi8M
It is also associated with the patch 0deea1b

Author

xiaoge1001 commented Jan 19, 2024

https://security-tracker.debian.org/tracker/CVE-2023-52323
0deea1b

https://ubuntu.com/security/CVE-2023-52323
afb5e27
519e7ae
0deea1b

eslerm commented Jan 23, 2024 •

edited

Loading

[ removed, my mistake ]

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment