Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2021:2583

Опубликовано: 22 июл. 2021
Источник: rocky
Оценка: Moderate

Описание

Moderate: python38:3.8 and python38-devel:3.8 security update

For more information visit https://errata.rockylinux.org/RLSA-2021:2583

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
python38-asn1cryptonoarch3.module+el8.4.0+570+c2eaf144python38-asn1crypto-1.2.0-3.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-cffix86_643.module+el8.4.0+570+c2eaf144python38-cffi-1.13.2-3.module+el8.4.0+570+c2eaf144.x86_64.rpm
python38-chardetnoarch19.module+el8.4.0+570+c2eaf144python38-chardet-3.0.4-19.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-cryptographyx86_643.module+el8.5.0+672+ab6eb015python38-cryptography-2.8-3.module+el8.5.0+672+ab6eb015.x86_64.rpm
python38-Cythonx86_644.module+el8.4.0+570+c2eaf144python38-Cython-0.29.14-4.module+el8.4.0+570+c2eaf144.x86_64.rpm
python38-idnanoarch6.module+el8.4.0+570+c2eaf144python38-idna-2.8-6.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-markupsafex86_646.module+el8.4.0+570+c2eaf144python38-markupsafe-1.1.1-6.module+el8.4.0+570+c2eaf144.x86_64.rpm
python38-plynoarch10.module+el8.4.0+570+c2eaf144python38-ply-3.11-10.module+el8.4.0+570+c2eaf144.noarch.rpm
python38-psycopg2x86_644.module+el8.6.0+794+eba84017python38-psycopg2-2.8.4-4.module+el8.6.0+794+eba84017.x86_64.rpm
python38-psycopg2-docx86_644.module+el8.6.0+794+eba84017python38-psycopg2-doc-2.8.4-4.module+el8.6.0+794+eba84017.x86_64.rpm

Показывать по

Связанные CVE

CVE-2020-14343

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2020-14343

CVSS3: 9.8
ubuntu
почти 5 лет назад

A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.

redhat логотип

CVE-2020-14343

CVSS3: 9.8
redhat
больше 5 лет назад

A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.

nvd логотип

CVE-2020-14343

CVSS3: 9.8
nvd
почти 5 лет назад

A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.

msrc логотип

CVE-2020-14343

CVSS3: 9.8
msrc
около 2 лет назад

Описание отсутствует

debian логотип

CVE-2020-14343

CVSS3: 9.8
debian
почти 5 лет назад

A vulnerability was discovered in the PyYAML library in versions befor ...