CVE-2024-33663 Information

Description

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.

Reference

https://github.com/mpdavis/python-jose/issues/346