Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2021:1879

Опубликовано: 18 мая 2021
Источник: rocky
Оценка: Moderate

Описание

Moderate: python38:3.8 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.

Security Fix(es):

  • python: CRLF injection via HTTP request method in httplib/http.client (CVE-2020-26116)

  • python-lxml: mXSS due to the use of improper parser (CVE-2020-27783)

  • python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c (CVE-2021-3177)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
python38-asn1cryptonoarch3.module+el8.4.0+570+c2eaf144python38-asn1crypto-1.2.0-3.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-cffix86_643.module+el8.4.0+570+c2eaf144python38-cffi-1.13.2-3.module+el8.4.0+570+c2eaf144.x86_64.rpm
python38-chardetnoarch19.module+el8.4.0+570+c2eaf144python38-chardet-3.0.4-19.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-cryptographyx86_643.module+el8.5.0+672+ab6eb015python38-cryptography-2.8-3.module+el8.5.0+672+ab6eb015.x86_64.rpm
python38-Cythonx86_644.module+el8.4.0+570+c2eaf144python38-Cython-0.29.14-4.module+el8.4.0+570+c2eaf144.x86_64.rpm
python38-idnanoarch6.module+el8.4.0+570+c2eaf144python38-idna-2.8-6.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-markupsafex86_646.module+el8.4.0+570+c2eaf144python38-markupsafe-1.1.1-6.module+el8.4.0+570+c2eaf144.x86_64.rpm
python38-plynoarch10.module+el8.4.0+570+c2eaf144python38-ply-3.11-10.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-psycopg2x86_644.module+el8.6.0+794+eba84017python38-psycopg2-2.8.4-4.module+el8.6.0+794+eba84017.x86_64.rpm
python38-psycopg2-docx86_644.module+el8.6.0+794+eba84017python38-psycopg2-doc-2.8.4-4.module+el8.6.0+794+eba84017.x86_64.rpm

Показывать по

Связанные CVE

CVE-2020-26116
CVE-2020-27783
CVE-2021-3177

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2021-1879

oracle-oval
около 4 лет назад

ELSA-2021-1879: python38:3.8 security update (MODERATE)

rocky логотип

RLSA-2021:1761

rocky
около 4 лет назад

Moderate: python27:2.7 security and bug fix update

oracle-oval логотип

ELSA-2021-1761

oracle-oval
около 4 лет назад

ELSA-2021-1761: python27:2.7 security and bug fix update (MODERATE)

oracle-oval логотип

ELSA-2022-5235

oracle-oval
почти 3 года назад

ELSA-2022-5235: python security update (MODERATE)

oracle-oval логотип

ELSA-2021-1633

oracle-oval
около 4 лет назад

ELSA-2021-1633: python3 security update (MODERATE)