pkgsrc.se | The NetBSD package collection

./security/py-asn1, ITU Abstract Syntax Notification for Python

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ]

Branch: CURRENT, Version: 0.6.3, Package name: py313-asn1-0.6.3, Maintainer: pkgsrc-users

ASN.1 tools for Python

Whenever data structures are described in some machine and programming
language independent and unambiguous way, such specification is called
abstract syntax, by contrast with machine/language specific methods,
which are called 'concrete' or 'transfer' syntaxes.

Abstract syntaxes appear useful in networking as a tool for engineering
protocols in a clear and portable way. Moreover, once a protocol is
described in some abstract language, protocol parsers and builders
could be automatically generated for various computing
architectures/programming languages, thus saving engineers from
implementing low-level transport details by hand.

Abstract Syntax Notation One (ASN.1) is a set of ITU standards
defining particular implementation of abstract data description
language accompanied by a collection of transfer encoding methods.
Perhaps the most widely used among these data serialization methods
is Basic Encoding Rules (BER) together with its derivatives (DER and
CER), while Packed Encoding Rules (PER) aims at most compact data
representation whilst in the wire.

Required to run:
[devel/py-setuptools] [lang/python37]

Required to build:
[pkgtools/cwrappers]

Master sites:

https://files.pythonhosted.org/packages/source/p/pyasn1/ (Download)

Filesize: 145.2 KB

Version history: (Expand)

(2026-03-21) Updated to version: py313-asn1-0.6.3
(2026-01-18) Updated to version: py313-asn1-0.6.2
(2025-10-24) Updated to version: py313-asn1-0.6.1nb1
(2025-10-24) Package has been reborn
(2025-10-24) Package deleted from pkgsrc
(2025-07-15) Package has been reborn

CVS history: (Expand)

2026-03-21 13:04:11 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
py-asn1: update to 0.6.3.

Security fix release.

Revision 0.6.3, released 16-03-2026
---------------------------------------

- CVE-2026-30922 (GHSA-jr27-m4p2-rc6r): Added nesting depth
  limit to ASN.1 decoder to prevent stack overflow from deeply
  nested structures (thanks for reporting, romanticpragmatism)
- Fixed OverflowError from oversized BER length field
  [issue #54](https://github.com/pyasn1/pyasn1/issues/54)
  [pr #100](https://github.com/pyasn1/pyasn1/pull/100)
- Fixed DeprecationWarning stacklevel for deprecated attributes
  [issue #86](https://github.com/pyasn1/pyasn1/issues/86)
  [pr #101](https://github.com/pyasn1/pyasn1/pull/101)
- Fixed asDateTime incorrect fractional seconds parsing
  [issue #81](https://github.com/pyasn1/pyasn1/issues/81)
  [pr #102](https://github.com/pyasn1/pyasn1/pull/102)

2026-01-18 07:45:37 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
py-asn1: update to 0.6.2.

Revision 0.6.2, released 16-01-2026
---------------------------------------

- CVE-2026-23490 (GHSA-63vm-454h-vhhq): Fixed continuation octet limits
  in OID/RELATIVE-OID decoder (thanks to tsigouris007)
- Added support for Python 3.14
- Added SECURITY.md policy
- Fixed unit tests failing due to missing code
- Migrated to pyproject.toml packaging

2025-04-13 13:04:57 by Thomas Klausner | Files touched by this commit (2)

Log message:
py-asn1: fix for setuptools>=78

2024-11-11 08:29:31 by Thomas Klausner | Files touched by this commit (862)

Log message:
py-*: remove unused tool dependency

py-setuptools includes the py-wheel functionality nowadays

2024-09-11 10:06:26 by Adam Ciarcinski | Files touched by this commit (3) | Package updated

Log message:
py-asn1: updated to 0.6.1

Revision 0.6.1, released 10-09-2024

- Added support for Python 3.13 and updated GitHub Actions
- Removed Python 2 support and related code
- Improved error handling and consistency
- Runtime deprecation of `tagMap` and `typeMap` aliases
- Fixed duplicated and missing declarations
- Cleaned documentation and comments
- Removed bdist_wheel universal flag from setup.cfg

2024-04-02 19:35:03 by Adam Ciarcinski | Files touched by this commit (2) | Package updated

Log message:
py-asn1: updated to 0.6.0

Revision 0.6.0, released 26-03-2024

- Added support for previously missing `RELATIVE-OID` construct
- Updated link to Layman's Guide
  Now it provides a link to links to a formatted PDF version of the paper,
  at a stable domain (researchgate), using https
- Removed support for EOL Python 2.7, 3.6, 3.7

2023-11-21 19:55:18 by Adam Ciarcinski | Files touched by this commit (3) | Package updated

Log message:
py-asn1: updated to 0.5.1

Revision 0.5.1, released 20-11-2023

- Added support for PyPy 3.10 and Python 3.12
- Updated RTD configuration to include a dummy index.rst
  redirecting to contents.html, ensuring compatibility with
  third-party documentation and search indexes.
- Fixed the API breakage wih decoder.decode(substrateFun=...).

  A substrateFun passed to ``decoder.decode()`` can now be either
  v0.4 Non-Streaming or v0.5 Streaming. pyasn1 will detect and
  handle both cases transparently.

  A substrateFun passed to one of the new streaming decoders is
  still expected to be v0.5 Streaming only.

2023-04-26 18:04:51 by Adam Ciarcinski | Files touched by this commit (3) | Package updated

Log message:
py-asn1: updated to 0.5.0

Revision 0.5.0, released 19-04-2023

- Change `RealEncoder.supportIndefLenMode` type to a boolean
- Fix CI for py39 test environment
- Replace all snmplabs.com links
- Use correct SPDX identifier for the license
- Re-add ``tagMap`` and ``typeMap`` module level attributes to all
  encoder and decoder modules. They are aliases for ``TAG_MAP`` and
  ``TYPE_MAP``
- Restore API for passing for ``tagMap`` and ``typeMap`` arguments
  to ``Encoder`` and ``Decoder`` classes by name and position,
- Re-add ``tagMap`` and ``typeMap`` module level attributes to all
  encoder and decoder modules. They are aliases for ``TAG_MAP`` and
  ``TYPE_MAP``
- Restore API for passing for ``tagMap`` and ``typeMap`` arguments
  to ``Encoder`` and ``Decoder`` classes by name and position,
- Make BER/CER/DER decoders streaming and suspendible

  The goal of this change is to make the decoder yielding on input
  data starvation and resuming from where it stopped whenever the
  caller decides to try again (hopefully making sure that some more
  input becomes available).

  This change makes it possible for the decoder to operate on streams
  of data (meaning that the entire DER blob might not be immediately
  available on input).

  On top of that, the decoder yields partially reconstructed ASN.1
  object on input starvation making it possible for the caller to
  inspect what has been decoded so far and possibly consume partial
  ASN.1 data.

  All these new feature are natively available through
  `StreamingDecoder` class. Previously published API is implemented
  as a thin wrapper on top of that ensuring backward compatibility.
- Added support for Python 3.8, 3.9, 3.10, 3.11
- Removed support for EOL Pythons 2.4, 2.5, 2.6, 3.2, 3.3, 3.4, 3.5
- Added support for PyPy 3.7, 3.8, 3.9
- Modernized packaging and testing. pyasn1 now uses ``setup.cfg``,
  ``pyproject.toml``, [build](https://pypi.org/project/build/), and
  GitHub Actions.
- PyPI package ownership for `pyasn1` and `pyasn1-module` has been
  transfered to *Christian Heimes* and *Simon Pichugin* in
- The upstream repositories for `pyasn1` and `pyasn1-modules` are now
  in the GitHub organization https://github.com/pyasn1/.