Name of the Vulnerable Software and Affected Versions cryptography versions 37.0.0 through 38.0.3

Description The issue concerns the statically linked copy of OpenSSL in pyca/cryptography's wheels. The included versions of OpenSSL are affected by several security issues, details of which can be found in the official OpenSSL security advisory.

Recommendations For cryptography versions 37.0.0 through 38.0.3, update to a version outside of this range to resolve the issue. If you are building cryptography from source, upgrade your copy of OpenSSL to a secure version.