CVE-2016-9243
Published
CVSS v3
7.5
HIGH
CVSS v2
5
MEDIUM
Affected
1
PROJECT
Description
HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digest_size.
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
GitHub