Описание
Moderate: python27:2.7 security and bug fix update
Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for MySQL and PostgreSQL.
Security Fix(es):
-
python: CRLF injection via HTTP request method in httplib/http.client (CVE-2020-26116)
-
python-urllib3: CRLF injection via HTTP request method (CVE-2020-26137)
-
python-lxml: mXSS due to the use of improper parser (CVE-2020-27783)
-
python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c (CVE-2021-3177)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section.
Затронутые продукты
Rocky Linux 8
Ссылки на источники
Исправления
- Red Hat - 1883014
- Red Hat - 1883632
- Red Hat - 1886754
- Red Hat - 1901633
- Red Hat - 1918168
