Security Advisory

CVE-2026-27459

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-17 23:34:28

Last updated 2026-03-18 19:52:15

Assigner GitHub_M

State PUBLISHED

Description

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to `set_cookie_generate_callback` returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0.0, cookie values that are too long are now rejected.

← Browse all CVEs View on cve.org ↗