Cbor2

Latest version: v5.6.5

Safety actively analyzes 710445 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 2 of 6

5.5.1

Not secure
- Fixed ``CBORSimpleValue`` allowing the use of reserved values (24 to 31) which resulted in
invalid byte sequences
- Fixed encoding of simple values from 20 to 23 producing the wrong byte sequences

5.5.0

Not secure
- The ``cbor2.encoder``, ``cbor2.decoder`` or ``cbor2.types`` modules were deprecated – import
their contents directly from ``cbor2`` from now on. The old modules will be removed in the next
major release.
- Added support for Python 3.12
- Added type annotations
- Dropped support for Python 3.7
- Fixed bug in the ``fp`` attribute of the built-in version of ``CBORDecoder`` and
``CBOREncoder`` where the getter returns an invalid pointer if the ``read`` method of
the file was a built-in method

5.4.6

Not secure
- Fix MemoryError when decoding Tags on 32bit architecture. (Sekenre)

5.4.5

Not secure
- Added official Python 3.11 support (agronholm)
- Raise proper exception on invalid bignums (Øyvind Rønningstad)
- Make Tagged item usable as a map key (Niels Mündler)
- Eliminate potential memory leak in tag handling (Niels Mündler)
- Documentation tweaks (Adam Johnson)

5.4.4

Not secure
**REMOVED** Due to potential memory leak bug

5.4.3

Not secure
- Removed support for Python < 3.7
- Various build system improvements for binary wheels (agronholm)
- Migrated project to use ``pyproject.toml`` and pre-commit hooks (agronholm)

Page 2 of 6

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.