Ubuntu has issued an advisory on November 3:
The issue is fixed upstream in 3.2.1.
Hi, thanks for reporting this.
Assigned to the package maintainer/recent commiters.
(Please set the status to 'assigned' if you are working on it)
Cauldron have 3.2.1 version and is not affected
seems that we can apply this patch :
are in core/updates_testing
Updated python-cryptography packages fix security vulnerability:
Hubert Kario discovered that python-cryptography incorrectly handled certain
decryption. An attacker could possibly use this issue to expose sensitive
Updated packages in core/updates_testing:
MGA7-64 MATE on Peaq C1011
No installation issues
Ref bug 23339 for tests
$ python -c 'import cryptography;print(cryptography.__version__)'
$ python3 -c 'import cryptography;print(cryptography.__version__)'
So OK for me
Advisory pushed to SVN.
An update for this issue has been pushed to the Mageia Updates repository.