Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2013-0250
HistoryAug 17, 2013 - 12:43 p.m.

Updated python packages fix CVE-2013-4328 and pip

2013-08-1712:43:24
Gentoo Foundation
advisories.mageia.org
10

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

56.8%

JSON

Updated python packages fix security vulnerability: Ryan Sleevi of the Google Chrome Security Team has discovered that Pythonโ€™s SSL module doesnโ€™t handle NULL bytes inside subjectAltNames general names. This could lead to a breach when an application uses ssl.match_hostname() to match the hostname againt the certificateโ€™s subjectAltNameโ€™s dNSName general names. (CVE-2013-4238). Additionally, an issue with installing Python packages with C extensions via pip and virtualenv has been fixed in Mageia 3 (mga#10102).

OSVersionArchitecturePackageVersionFilename
Mageia2noarchpython<ย 2.7.3-2.4python-2.7.3-2.4.mga2
Mageia3noarchpython<ย 2.7.5-1.2python-2.7.5-1.2.mga3

Related

cve 2
prion 2
securityvulns 4
oraclelinux 1
redhat 2
openvas 44
nessus 33
ubuntu 4
fedora 10
centos 1
osv 4
f5 2
debian 2
amazon 2
ubuntucve 1
seebug 1
mageia 1
veracode 1
debiancve 1
vmware 2
ibm 1
suse 1
cve
cve
CVE-2013-4328
2013-08-27 03:34:00
CVE-2013-4238
2013-08-18 02:52:00
prion
prion
Design/Logic Flaw
2013-08-27 03:34:00
Design/Logic Flaw
2013-08-18 02:52:00
securityvulns
securityvulns
[ MDVSA-2013:214 ] python
2013-08-28 00:00:00
Python SSL certificate check bypass
2013-10-02 00:00:00
PHP / python certificate spoofing
2013-08-28 00:00:00
oraclelinux
oraclelinux
python security, bug fix, and enhancement update
2013-11-26 00:00:00
redhat
redhat
(RHSA-2013:1582) Moderate: python security, bug fix, and enhancement update
2013-11-21 00:00:00
(RHSA-2013:1527) Important: rhev-hypervisor6 security and bug fix update
2013-11-21 00:00:00
openvas
openvas
RedHat Update for python RHSA-2013:1582-02
2013-11-21 00:00:00
Fedora Update for python3 FEDORA-2013-21418
2013-11-26 00:00:00
Fedora Update for python FEDORA-2013-15146
2013-08-27 00:00:00
nessus
nessus
openSUSE Security Update : python3 (openSUSE-SU-2013:1439-1)
2014-06-13 00:00:00
Fedora 19 : python3-3.3.2-6.fc19 (2013-15254)
2013-08-28 00:00:00
Scientific Linux Security Update : python on SL6.x i386/x86_64 (20131121)
2013-12-04 00:00:00
ubuntu
ubuntu
Python 2.6 vulnerability
2013-10-01 00:00:00
Python 2.7 vulnerabilities
2013-10-01 00:00:00
Python 3.3 vulnerabilities
2013-10-01 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: python-2.7.5-4.fc19
2013-08-24 22:27:19
[SECURITY] Fedora 19 Update: python3-3.3.2-8.fc19
2013-11-26 04:01:31
[SECURITY] Fedora 19 Update: python3-3.3.2-6.fc19
2013-08-27 23:35:51
centos
centos
python, tkinter security update
2013-11-26 13:32:42
osv
osv
python2.7 - security update
2014-03-17 00:00:00
python2.6 - regression update
2014-07-31 00:00:00
python2.6 - regression update
2014-07-31 00:00:00
f5
f5
SOL15638 - Python vulnerability CVE-2013-4238
2014-09-29 00:00:00
K15638 : Python vulnerability CVE-2013-4238
2014-10-17 00:00:00
debian
debian
[SECURITY] [DSA 2880-1] python2.7 security update
2014-03-17 18:07:37
[DLA 25-1] python2.6 security update
2014-07-31 21:07:32
amazon
amazon
Medium: python27
2013-09-04 13:31:00
Medium: python26
2013-11-03 12:09:00
ubuntucve
ubuntucve
CVE-2013-4238
2013-08-17 00:00:00
seebug
seebug
Pythonๅคšไธชๅฎ‰ๅ…จๆผๆดž
2013-12-30 00:00:00
mageia
mageia
Updated python3, bzr and some python packages fix security vulnerabilties
2013-08-22 21:58:14
veracode
veracode
Man-in-the-Middle (MitM)
2019-01-15 08:51:35
debiancve
debiancve
CVE-2013-4238
2013-08-18 02:52:00
vmware
vmware
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in python 2.6.4 used in OS Image for AIX shipped with IBM Cloud Pak System
2020-05-06 11:57:04
suse
suse
Security update for python3 (important)
2020-01-21 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

56.8%

JSON
Related for MGASA-2013-0250
cve2prion2securityvulns4oraclelinux1redhat2openvas44nessus33ubuntu4fedora10centos1osv4f52debian2amazon2ubuntucve1seebug1mageia1veracode1debiancve1vmware2ibm1suse1