It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information.
{ "availability": "No subscription required", "binaries": [ { "python3-pycryptodome": "3.11.0+dfsg1-3ubuntu0.1", "python3-pycryptodome-dbgsym": "3.11.0+dfsg1-3ubuntu0.1", "python-pycryptodome-doc": "3.11.0+dfsg1-3ubuntu0.1" } ] }