Fedora Security Advisories

• scitokens-cpp-1.4.1-1.el10_3

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.el10_1

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.el8

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.fc44

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.fc42

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.fc43

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.el9

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• python-scitokens-1.9.7-1.fc43

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.el9

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.el8

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.fc42

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.fc44

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.el10_3

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.6-1.fc44

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.6-1.el10_3

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.6-1.el9

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.6-1.el8

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.6-1.fc42

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.6-1.fc43

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-ujson-5.12.0-1.el10_1

Update to 5.12.0. This release updates the license field in the Python metadata and fixes a buffer overflow/infinite loop from indent handling.