pkg:PyPI/python-jose

All known vulnerabilities

• CRITICAL9.8CVE-2016-7036python-jose failure to use a constant time comparison for HMAC keys
  from 0, < 1.3.2
• CRITICAL9.8CVE-2016-7036python-jose failure to use a constant time comparison for HMAC keys
  from 0, < 1.3.2
• HIGH7.4CVE-2024-33663python-jose algorithm confusion with OpenSSH ECDSA keys
  from 0, < 3.4.0
• HIGH7.4python-jose algorithm confusion with OpenSSH ECDSA keys
  from 0, < 3.4.0
• MEDIUM5.3Duplicate Advisory: python-jose denial of service via compressed JWE content
  from 0, < 3.4.0
• MEDIUM5.3Duplicate Advisory: python-jose denial of service via compressed JWE content
  from 0, <= 3.3.0
• MEDIUM5.3python-jose denial of service via compressed JWE content
  from 0, < 3.4.0
• MEDIUM5.3python-jose denial of service via compressed JWE content
  from 0, < 3.4.0