Skip to content
This repository was archived by the owner on Apr 29, 2024. It is now read-only.

chore(deps): update dependency pyopenssl to v17.5.0 #3

Open
mend-for-github-com wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): update dependency pyopenssl to v17.5.0 #3

mend-for-github-com wants to merge 1 commit into from

Conversation

@mend-for-github-com
Copy link

@mend-for-github-com mend-for-github-com bot commented Apr 26, 2024

This PR contains the following updates:

Package Update Change
pyOpenSSL (source) minor ==17.2.0 -> ==17.5.0

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 8.1 CVE-2018-1000807
Medium Medium 5.9 CVE-2018-1000808

Release Notes

pyca/pyopenssl (pyOpenSSL)

v17.5.0

Compare Source

Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • The minimum cryptography version is now 2.1.4.

Deprecations:
^^^^^^^^^^^^^

none

Changes:
^^^^^^^^

  • Fixed a potential use-after-free in the verify callback and resolved a memory leak when loading PKCS12 files with cacerts.
    #&#8203;723 <https://github.com/pyca/pyopenssl/pull/723>_
  • Added Connection.export_keying_material for RFC 5705 compatible export of keying material.
    #&#8203;725 <https://github.com/pyca/pyopenssl/pull/725>_

v17.4.0

Compare Source

Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

none

Deprecations:
^^^^^^^^^^^^^

none

Changes:
^^^^^^^^

  • Re-added a subset of the OpenSSL.rand module.
    This subset allows conscientious users to reseed the OpenSSL CSPRNG after fork.
    #&#8203;708 <https://github.com/pyca/pyopenssl/pull/708>_
  • Corrected a use-after-free when reusing an issuer or subject from an X509 object after the underlying object has been mutated.
    #&#8203;709 <https://github.com/pyca/pyopenssl/pull/709>_

v17.3.0

Compare Source

Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Dropped support for Python 3.3.
    #&#8203;677 <https://github.com/pyca/pyopenssl/pull/677>_
  • Removed the deprecated OpenSSL.rand module.
    This is being done ahead of our normal deprecation schedule due to its lack of use and the fact that it was becoming a maintenance burden.
    os.urandom() should be used instead.
    #&#8203;675 <https://github.com/pyca/pyopenssl/pull/675>_

Deprecations:
^^^^^^^^^^^^^

  • Deprecated OpenSSL.tsafe.
    #&#8203;673 <https://github.com/pyca/pyopenssl/pull/673>_

Changes:
^^^^^^^^

  • Fixed a memory leak in OpenSSL.crypto.CRL.
    #&#8203;690 <https://github.com/pyca/pyopenssl/pull/690>_
  • Fixed a memory leak when verifying certificates with OpenSSL.crypto.X509StoreContext.
    #&#8203;691 <https://github.com/pyca/pyopenssl/pull/691>_
  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Apr 26, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

security fix Security fix generated by Mend

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant