Name of the Vulnerable Software and Affected Versions parsel versions (affected versions not specified)

Description The issue concerns the use of an insecure key derivation function in the package. It runs keys of arbitrary lengths through one round of SHA256 hashing for key stretching, allowing the use of keys with insufficient entropy due to inappropriate key stretching.

Recommendations Consider using an alternative package, as the current package is deprecated and will not be updated.