Download
| Alert*
oval:org.secpod.oval:def:506418
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:86325 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:3300826 SUSE Security Update: Security update for python39 oval:org.secpod.oval:def:89045759 This update for python fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading after a http 100. - CVE-2021-3733: Fixed ReDoS in urllib.request oval:org.secpod.oval:def:89045711 This update for python3 fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading after a http 100. - CVE-2021-3733: Fixed ReDoS in urllib.request oval:org.secpod.oval:def:89045702 This update for python36 fixes the following issues: - Update to 3.6.15: - CVE-2021-3737: Fixed a DoS caused by infinitely reading potential HTTP headers after a 100 Continue status response from the server. - CVE-2021-3426: Fixed an information disclosure via pydoc. - CVE-2021-3733: Fixed a ReDoS ... oval:org.secpod.oval:def:89045883 This update for python3 fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading after a http 100. - CVE-2021-3733: Fixed ReDoS in urllib.request. - CVE-2021-3426: Fixed an information disclosure via pydoc. - Rebuild to get new headers, avoid building in support for s ... oval:org.secpod.oval:def:506853 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:120795 MinGW Windows python3 library. oval:org.secpod.oval:def:120777 Python 2 is an old version of the language that is incompatible with the 3.x line of releases. The language is mostly the same, but many details, especially how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been removed ... oval:org.secpod.oval:def:120779 Python 2 is an old version of the language that is incompatible with the 3.x line of releases. The language is mostly the same, but many details, especially how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been removed ... oval:org.secpod.oval:def:1505176 [3.6.8-39.0.1] - Add Oracle Linux distribution in platform.py [Orabug: 20812544] [3.6.8-39] - Security fix for CVE-2021-3733: Denial of service when identifying crafted invalid RFCs Resolves: rhbz#1995234 oval:org.secpod.oval:def:87743 The host is installed with Python before 3.6.14, 3.7.x before 3.7.11, and 3.8.x before 3.8.10, 3.9.x before 3.9.5 and is prone to a denial of service vulnerability. A flaw is present in urllib's AbstractBasicAuthHandler class, which fails to properly handle unknown vectors. Successful exploitation a ... oval:org.secpod.oval:def:89047164 This update for python fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading after a http 100. - CVE-2021-3733: Fixed ReDoS in urllib.request oval:org.secpod.oval:def:706258 python3.6: An interactive high-level object-oriented language Python could be made to crash if it receives specially crafted input from a malicious server. oval:org.secpod.oval:def:506461 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:2107126 Oracle Solaris 11 - ( CVE-2021-3737 ) oval:org.secpod.oval:def:77043 python3.6: An interactive high-level object-oriented language Python could be made to crash if it receives specially crafted input from a malicious server. oval:org.secpod.oval:def:89047611 This update for python39 fixes the following issues: - CVE-2021-3572: Fixed an improper handling of unicode characters in pip . - Update to 3.9.10 - Remove shebangs from from python-base libraries in _libdir. - Update to 3.9.9: * Core and Builtins + bpo-30570: Fixed a crash in issubclass from infi ... oval:org.secpod.oval:def:86328 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:2500320 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. oval:org.secpod.oval:def:2500953 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. oval:org.secpod.oval:def:89047089 This update for python3 fixes the following issues: - CVE-2021-3426: Fixed information disclosure via pydoc . - CVE-2021-3733: Fixed infinitely reading potential HTTP headers after a 100 Continue status response from the server . - CVE-2021-3737: Fixed ReDoS in urllib.request . - We do not require p ... oval:org.secpod.oval:def:89049484 This update for python3 fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading after a http 100. - CVE-2021-3733: Fixed ReDoS in urllib.request. - CVE-2021-3426: Fixed an information disclosure via pydoc. - Rebuild to get new headers, avoid building in support for s ... oval:org.secpod.oval:def:4501313 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:1505429 mod_wsgi [4.7.1-4] - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz#1877430 [4.7.1-3] - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild [4.7.1-2] - Rebuilt for Python 3.9 [4.7.1-1] - update to 4.7.1 numpy [1.19.4-3] - Adjusted the postun scriptlets to enable ... oval:org.secpod.oval:def:706254 python3.7: An interactive high-level object-oriented language - python3.8: An interactive high-level object-oriented language Python could be made to crash if it receives specially crafted input from a malicious server. oval:org.secpod.oval:def:77044 python3.7: An interactive high-level object-oriented language - python3.8: An interactive high-level object-oriented language Python could be made to crash if it receives specially crafted input from a malicious server. oval:org.secpod.oval:def:4500926 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. The following packa ... oval:org.secpod.oval:def:1505654 babel [9.0.3-19] - Remove bundled windows executables - Resolves: rhbz#2006792 python2 [2.7.18-10.0.1] - Add Oracle Linux distribution in platform.py [Orabug: 20812544] [2.7.18-10] - Security fix for CVE-2022-0391: urlparse does not sanitize URLs containing ASCII newline and tabs Resolves: rhbz#2047 ... oval:org.secpod.oval:def:4501079 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for My ... oval:org.secpod.oval:def:506904 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for My ... oval:org.secpod.oval:def:506925 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. The following packa ... oval:org.secpod.oval:def:2500765 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for My ... oval:org.secpod.oval:def:1505645 numpy [1.17.3-6] - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz#1933055 python38 [3.8.12-1] - Update to 3.8.12 Resolves: rhbz#2004587 [3.8.11-1] - Update to 3.8.11 - Fix for CVE-2021-3733 and CVE-2021-3737 Resolves: rhbz#1995234, rhbz#1995162 python3x-pip [19.3.1-5] ... oval:org.secpod.oval:def:2500783 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. oval:org.secpod.oval:def:1700926 In Python3's Lib/test/multibytecodec_support.py CJK codec tests call eval on content retrieved via HTTP. The package python/cpython is vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate qu ... oval:org.secpod.oval:def:1601544 In Python3's Lib/test/multibytecodec_support.py CJK codec tests call eval on content retrieved via HTTP. The package python/cpython is vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate qu ... |