Описание
ELSA-2021-1633: python3 security update (MODERATE)
[3.6.8-37.0.1]
- Add Oracle Linux distribution in platform.py [Orabug: 20812544]
[3.6.8-37]
- Fix for CVE-2021-23336 Resolves: rhbz#1928904
[3.6.8-36]
- Fix for CVE-2021-3177 Resolves: rhbz#1918168
[3.6.8-35]
- New options -a and -k for pathfix.py script backported from upstream Resolves: rhbz#1917691
[3.6.8-34]
- Security fix for CVE-2020-27619: eval() call on content received via HTTP in the CJK codec tests Resolves: rhbz#1890237
[3.6.8-33]
- Add support for upstream architecture names https://fedoraproject.org/wiki/Changes/Python_Upstream_Architecture_Names Resolves: rhbz#1868003
[3.6.8-32]
- Security fix for CVE-2020-26116: Reject control chars in HTTP method in http.client Resolves: rhbz#1883257
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
platform-python
3.6.8-37.0.1.el8
platform-python-debug
3.6.8-37.0.1.el8
platform-python-devel
3.6.8-37.0.1.el8
python3-idle
3.6.8-37.0.1.el8
python3-libs
3.6.8-37.0.1.el8
python3-test
3.6.8-37.0.1.el8
python3-tkinter
3.6.8-37.0.1.el8
Oracle Linux x86_64
platform-python
3.6.8-37.0.1.el8
platform-python-debug
3.6.8-37.0.1.el8
platform-python-devel
3.6.8-37.0.1.el8
python3-idle
3.6.8-37.0.1.el8
python3-libs
3.6.8-37.0.1.el8
python3-test
3.6.8-37.0.1.el8
python3-tkinter
3.6.8-37.0.1.el8
Связанные уязвимости
In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.
In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.
In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.
In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ...