From release notes for 3.2: * SECURITY ISSUE: Attempted to make RSA PKCS#1v1.5 decryption more constant time, to protect against Bleichenbacher vulnerabilities. Due to limitations imposed by our API, we cannot completely mitigate this vulnerability and a future release will contain a new API which is designed to be resilient to these for contexts where it is required. Credit to Hubert Kario for reporting the issue. CVE-2020-25659
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9312276bcda253a5d85c5fc61f5658e51a6bfd43 commit 9312276bcda253a5d85c5fc61f5658e51a6bfd43 Author: Michał Górny <mgorny@gentoo.org> AuthorDate: 2020-10-26 07:04:25 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2020-10-26 07:38:52 +0000 dev-python/cryptography: Bump to 3.2 Bug: https://bugs.gentoo.org/751292 Signed-off-by: Michał Górny <mgorny@gentoo.org> dev-python/cryptography/Manifest | 2 + dev-python/cryptography/cryptography-3.2.ebuild | 53 +++++++++++++++++++++++++ 2 files changed, 55 insertions(+)
x86 stable
arm64 done
arm done
hppa/ppc/ppc64 stable
amd64 done
sparc stable
Please cleanup.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a25bf5fdd5b86796d326a809f7f49dfc7b00e91a commit a25bf5fdd5b86796d326a809f7f49dfc7b00e91a Author: Michał Górny <mgorny@gentoo.org> AuthorDate: 2020-10-30 07:35:19 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2020-10-30 07:35:23 +0000 dev-python/cryptography: Remove old Bug: https://bugs.gentoo.org/751292 Signed-off-by: Michał Górny <mgorny@gentoo.org> dev-python/cryptography/Manifest | 4 -- dev-python/cryptography/cryptography-3.0-r1.ebuild | 60 ---------------------- dev-python/cryptography/cryptography-3.1-r1.ebuild | 56 -------------------- 3 files changed, 120 deletions(-)
GLSA Vote: No Repository is clean, all done!