action needed
A new upstream version is available: 0.14.1
high
A new upstream version 0.14.1 is available, you should consider packaging it.
2 security issues in buster
high
There are 2 open security issues in buster.
2 important issues:
- CVE-2019-14853: An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature decoding, malformed DER signatures could raise unexpected exceptions (or no exceptions at all), which could lead to a denial of service.
- CVE-2019-14859:
2 security issues in stretch
high
There are 2 open security issues in stretch.
2 important issues:
- CVE-2019-14853: An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature decoding, malformed DER signatures could raise unexpected exceptions (or no exceptions at all), which could lead to a denial of service.
- CVE-2019-14859:
![[bug history graph]](https://qa.debian.org/data/bts/graphs/p/python-ecdsa.png){kind=link}