CVE-2018-15560: Integer Overflow or Wraparound
(updated )
PyCryptodome has an integer overflow in the data_len
variable in AESNI.c
, related to the AESNI_encrypt
and AESNI_decrypt
functions.
References
Detect and mitigate CVE-2018-15560 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →