Elixir@0.7.0 vulnerabilities

Declarative Mapper for SQLAlchemy

latest version

0.7.1
first published

17 years ago
latest version published

15 years ago
licenses detected
- MIT
  [0,)
View Elixir package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the Elixir package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Insecure Randomness Elixir is a Declarative Mapper for SQLAlchemy Affected versions of this package are vulnerable to Insecure Randomness. Elixir uses Blowfish in CFB mode without constructing a unique initialization vector (IV), which makes it easier for context-dependent users to obtain sensitive information and decrypt the database. How to fix Insecure Randomness? There is no fixed version for `Elixir`.	[0,)

Insecure Randomness

Elixir is a Declarative Mapper for SQLAlchemy

Affected versions of this package are vulnerable to Insecure Randomness. Elixir uses Blowfish in CFB mode without constructing a unique initialization vector (IV), which makes it easier for context-dependent users to obtain sensitive information and decrypt the database.

How to fix Insecure Randomness?

There is no fixed version for Elixir.

[0,)

Go back to all versions of this package

Elixir@0.7.0 vulnerabilities

Declarative Mapper for SQLAlchemy

latest version

first published

latest version published

licenses detected

Direct Vulnerabilities