pypqc@0.0.1 vulnerabilities
Python bindings for the "PQClean" post-quantum cryptography library.
-
latest version
0.8.0.dev1
-
first published
a year ago
-
latest version published
3 months ago
-
licenses detected
- (Apache-2.0 OR Public-Domain)[0.0.1,0.0.7.0a2)
Direct Vulnerabilities
Known vulnerabilities in the pypqc package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
pypqc is a Python bindings for the "PQClean" post-quantum cryptography library. Affected versions of this package are vulnerable to Exposure of Sensitive Information to an Unauthorized Actor due to the handling of ciphertexts against a single private key and the ability to get responses in real-time. An attacker can recover the private key by submitting many ciphertexts. How to fix Exposure of Sensitive Information to an Unauthorized Actor? Upgrade |
[,0.0.6.1)
|