CVE-2022-48566

Updated: 2024-11-22 05:37:34.77027

Description:

An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.9

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9 Python python2 2.7.18 5.9 MEDIUM Released CLSA-2023:1697464940 2023-10-16 11:04:22