OPENSUSE-SU-2019:2474-1
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 09 Nov 2019, 23:20
Last modified:04 Feb 2026, 03:29
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
09 Nov 2019, 23:20
Published
Vulnerability first disclosed
04 Feb 2026, 03:29
Last Modified
Vulnerability information updated
Description
Security update for python-ecdsa This update for python-ecdsa to version 0.13.3 fixes the following issues: Security issues fixed: - CVE-2019-14853: Fixed unexpected exceptions during signature decoding (bsc#1153165). - CVE-2019-14859: Fixed a signature malleability caused by insufficient checks of DER encoding (bsc#1154217). This update was imported from the SUSE:SLE-15:Update update project.
Affected Systems
- opensuse•python-ecdsa&distro=openSUSE Leap 15.1
< 0.13.3-lp151.3.3.1
References (5)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HKCRLMLAL63XC2U5VGLQDLDHODEV7Y44/#HKCRLMLAL63XC2U5VGLQDLDHODEV7Y44
- https://bugzilla.suse.com/1153165
- https://bugzilla.suse.com/1154217
- https://www.suse.com/security/cve/CVE-2019-14853
- https://www.suse.com/security/cve/CVE-2019-14859