Package "pyjwt"

Name:	pyjwt
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: Python 3 implementation of JSON Web Token (Documentation) Python 3 implementation of JSON Web Token
Latest version:	2.10.1-2ubuntu0.1
Release:	questing (25.10)
Level:	security
Repository:	main

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "pyjwt" in Questing

Repository	Area	Version
base	main	2.10.1-2
updates	main	2.10.1-2ubuntu0.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 2.10.1-2ubuntu0.1 2026-03-30 21:08:32 UTC

pyjwt (2.10.1-2ubuntu0.1) questing-security; urgency=medium * SECURITY UPDATE: Incorrect authorization of invalid JWS token. - debian/patches/CVE-2026-32597.patch: Add _supported_crit and checks for valid crit header in jwt/api_jws.py. Add tests in tests/test_api_jws.py and tests/test_api_jwt.py. - CVE-2026-32597 -- Hlib Korzhynskyy <email address hidden> Thu, 26 Mar 2026 10:29:25 -0230

CVE-2026-32597

PyJWT is a JSON Web Token implementation in Python. Prior to 2.12.0, PyJWT does not validate the crit (Critical) Header Parameter defined in RFC 7515

About - Send Feedback to @ubuntu_updates

Package "pyjwt"

Links

Other versions of "pyjwt" in Questing

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

security

proposed

updates

PPA updates