CVE-2020-26244: Improper Verification of Cryptographic Signature
(updated )
Python oic is a Python OpenID Connect implementation. In Python oic, there are several related cryptographic issues affecting client implementations that use the library.
References
Detect and mitigate CVE-2020-26244 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →