Debian Patches
Status for python-authlib/1.2.0-1+deb12u1
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| sphinx-default-theme | Use the default theme sphinx_typlog_theme isn't packaged in Debian, yet. |
Stefano Rivera <stefanor@debian.org> | not-needed | 2020-08-18 | ||
| sphinx-3rdparty-assets | Disable 3rd party assets in docs Fetching assets from external websites can cause a privacy breach. |
Stefano Rivera <stefanor@debian.org> | no | 2020-08-18 | ||
| CVE-2025-62706.patch | fix(jose): add max size for JWE zip=DEF decompression | Hsiaoming Yang <me@lepture.com> | yes | upstream | https://github.com/authlib/authlib/commit/4b5b5703394608124cd39e547cc7829feda05a13 | 2025-09-24 |
| CVE-2025-61920.patch | fix(jose): add size limitation to prevent DoS | Hsiaoming Yang <me@lepture.com> | yes | upstream | https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e | 2025-10-02 |
| CVE-2025-59420.patch | [PATCH 3/3] fix(jose): Reject unprotected ‘crit’ and enforce type; add tests (#823) | Muhammad Noman Ilyas <113287211+AL-Cybision@users.noreply.github.com> | yes | upstream | https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df | 2025-09-14 |
| CVE-2025-68158.patch | Merge commit from fork | Hsiaoming Yang <me@lepture.com> | yes | upstream | https://github.com/authlib/authlib/commit/2808378611dd6fb2532b189a9087877d8f0c0489 | 2025-12-12 |
| CVE-2024-37568.patch | fix: prevent OctKey to import ssh/rsa/pem keys https://github.com/lepture/authlib/issues/654 |
Hsiaoming Yang <me@lepture.com> | yes | upstream | https://github.com/lepture/authlib/commit/3bea812acefebc9ee108aa24557be3ba8971daf1 | 2024-06-04 |
All known versions for source package 'python-authlib'
- 1.7.2-1 (sid)
- 1.7.0-1 (forky)
- 1.6.0-1+deb13u1 (trixie)
- 1.2.0-1+deb12u1 (bookworm)