Bump cryptography from 46.0.5 to 46.0.6 by dependabot[bot] · Pull Request #233 · bitpay/python-bitpay-client
Conversation
Bumps cryptography from 46.0.5 to 46.0.6.
Changelog
Sourced from cryptography's changelog.
46.0.6 - 2026-03-25
* **SECURITY ISSUE**: Fixed a bug where name constraints were not applied to peer names during verification when the leaf certificate contains a wildcard DNS SAN. Ordinary X.509 topologies are not affected by this bug, including those used by the Web PKI. Credit to **Oleh Konko (1seal)** for reporting the issue. **CVE-2026-34073**
.. _v46-0-5:
Commits
91d7288Cherry-pick #14542 (#14543)- See full diff in compare view
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters