The verify function in the RSA package for Python (Python-RSA) prior to 3.3 allows malicious users to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
python rsa |
||
fedoraproject fedora 22 |
||
fedoraproject fedora 23 |
||
opensuse leap 42.1 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |