It was discovered that pyOpenSSL incorrectly handled memory when handling X509 objects. A remote attacker could use this issue to cause pyOpenSSL to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2018-1000807)
It was discovered that pyOpenSSL incorrectly handled memory when performing operations on a PKCS #12 store. A remote attacker could possibly use this issue to cause pyOpenSSL to consume resources, resulting in a denial of service. (CVE-2018-1000808)
{ "availability": "No subscription required", "binaries": [ { "binary_name": "python-openssl", "binary_version": "0.15.1-2ubuntu0.2" }, { "binary_name": "python-openssl-doc", "binary_version": "0.15.1-2ubuntu0.2" }, { "binary_name": "python3-openssl", "binary_version": "0.15.1-2ubuntu0.2" } ] }