An issue exists in compare_digest in Lib/hmac.py in Python up to and including 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
python python |
||
debian debian linux 10.0 |
||
netapp active iq unified manager - |
||
netapp converged systems advisor agent - |