Question: What are the fix patches for CVE-2023-52323?

[xiaoge1001]

I found 26 commits between versions 3.19.0 and 3.19.1. Which ones fix CVE-2023-52323?

My analysis should be the following commit: https://github.com/Legrandin/pycryptodome/commit/afb5e27a15efe59e33c2825d40ef44995c13b8bc https://github.com/Legrandin/pycryptodome/commit/519e7aea6de4e8f03b62c6e1dba724aca738882e https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

In addition, does CVE-2023-52323 provide other information such as POC or issue? The information available is very limited. https://nvd.nist.gov/vuln/detail/CVE-2023-52323 https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst#3191-28-december-2023 https://www.pycryptodome.org/src/changelog#december-2023

We look forward to your reply. Thanks.

[xiaoge1001]

This advisories is associated with the following patch: https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

[xiaoge1001]

https://groups.google.com/g/linux.debian.bugs.dist/c/ibzqvtwhi8M It is also associated with the patch https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

[xiaoge1001]

https://security-tracker.debian.org/tracker/CVE-2023-52323 https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

https://ubuntu.com/security/CVE-2023-52323 https://github.com/Legrandin/pycryptodome/commit/afb5e27a15efe59e33c2825d40ef44995c13b8bc https://github.com/Legrandin/pycryptodome/commit/519e7aea6de4e8f03b62c6e1dba724aca738882e https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

[eslerm]

[ removed, my mistake ]