From 2545e3f370ce739aa50c9bcbe01517190d2e4d08 Mon Sep 17 00:00:00 2001 From: Jonathan Ringer Date: Mon, 23 Nov 2020 16:26:26 -0800 Subject: [PATCH] python2Packages.cryptography: mark insecure, CVE-2020-25659 --- pkgs/development/python-modules/cryptography/2.9.nix | 1 + 1 file changed, 1 insertion(+) diff --git a/pkgs/development/python-modules/cryptography/2.9.nix b/pkgs/development/python-modules/cryptography/2.9.nix index 6a6187e5693..3bbb67c5240 100644 --- a/pkgs/development/python-modules/cryptography/2.9.nix +++ b/pkgs/development/python-modules/cryptography/2.9.nix @@ -70,5 +70,6 @@ buildPythonPackage rec { + replaceStrings [ "." ] [ "-" ] version; license = with licenses; [ asl20 bsd3 psfl ]; maintainers = with maintainers; [ primeos ]; + knownVulnerabilities = [ "CVE-2020-25659" "https://github.com/advisories/GHSA-hggm-jpg3-v476" ]; }; }