cryptoauthlib@20190125 vulnerabilities

Python Wrapper Library for Microchip Security Products

latest version

20241015
latest non vulnerable version

20241015
first published

6 years ago
latest version published

a month ago
licenses detected
- Unknown
  [0,)
View cryptoauthlib package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the cryptoauthlib package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Denial of Service (DoS) cryptoauthlib is a Python Wrapper Library for Microchip Security Products Affected versions of this package are vulnerable to Denial of Service (DoS) due to buffer and stack overflow vulnerabilities. These vulnerabilities originate from the deprecated USB kit enumeration feature, where an attacker can impersonate a device and send malformed packets of arbitrary length, leading the protocol stack to write these packets to the stack, potentially causing a system crash or service disruption. How to fix Denial of Service (DoS)? Upgrade `cryptoauthlib` to version 20200912 or higher.	[,20200912)
H Buffer Overflow cryptoauthlib is a Python Wrapper Library for Microchip Security Products Affected versions of this package are vulnerable to Buffer Overflow in deprecated USB HALs and USB enumeration. How to fix Buffer Overflow? Upgrade `cryptoauthlib` to version 20200912 or higher.	[,20200912)

Denial of Service (DoS)

cryptoauthlib is a Python Wrapper Library for Microchip Security Products

Affected versions of this package are vulnerable to Denial of Service (DoS) due to buffer and stack overflow vulnerabilities. These vulnerabilities originate from the deprecated USB kit enumeration feature, where an attacker can impersonate a device and send malformed packets of arbitrary length, leading the protocol stack to write these packets to the stack, potentially causing a system crash or service disruption.

How to fix Denial of Service (DoS)?

Upgrade cryptoauthlib to version 20200912 or higher.

[,20200912)

Buffer Overflow

cryptoauthlib is a Python Wrapper Library for Microchip Security Products

Affected versions of this package are vulnerable to Buffer Overflow in deprecated USB HALs and USB enumeration.

How to fix Buffer Overflow?

Upgrade cryptoauthlib to version 20200912 or higher.

[,20200912)

Go back to all versions of this package

cryptoauthlib@20190125 vulnerabilities

Python Wrapper Library for Microchip Security Products

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities