Vulnerabilities

CVE-2026-39892

by Fred · 08/04/2026

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers (e.g. Hash.update()), this could lead to buffer overflows. This vulnerability is fixed in 46.0.7.

More information : https://github.com/pyca/cryptography/security/advisories/GHSA-p423-j2cm-9vmq

Similar

Tags: Cybersecurity Alert