Updated python/python3 packages fix security vulnerability

🗓️ 01 Jan 2018 01:17:34Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 33 Views

Python security fix for string decoding vulnerabilit

Reporter	Title	Published	Views	Family All 169
FreeBSD	python -- possible integer overflow vulnerability	3 Jun 201700:00	–	freebsd
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in the version of Python shipped with the IBM Resilient virtual appliance (CVE-2017-1000158, CVE-2014-4616)	19 Apr 202121:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Python affect IBM BladeCenter Advanced Management Module (AMM)	11 Oct 201815:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM RackSwitch firmware products are affected by vulnerability in Python (CVE-2017-1000158)	7 Mar 201919:45	–	ibm
Amazon	Medium: python35, python34	17 Jan 201800:00	–	amazon
Amazon	Medium: python27	7 Feb 201800:00	–	amazon
Tenable Nessus	Amazon Linux AMI : python35 / python34 (ALAS-2018-943)	19 Jan 201800:00	–	nessus
Tenable Nessus	Amazon Linux AMI : python27 (ALAS-2018-945)	9 Feb 201800:00	–	nessus
Tenable Nessus	Debian DLA-1189-1 : python2.7 security update	27 Nov 201700:00	–	nessus
Tenable Nessus	Debian DLA-1190-1 : python2.6 security update	27 Nov 201700:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	6	any	python	2.7.13-1.1	python-2.7.13-1.1.noarch.rpm
Mageia	5	any	python	2.7.9-2.5	python-2.7.9-2.5.noarch.rpm
Mageia	5	any	python3	3.4.3-1.6	python3-3.4.3-1.6.noarch.rpm
Mageia	6	any	python3	3.5.3-1.1	python3-3.5.3-1.1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
usn	www.usn.ubuntu.com/usn/usn-3496-1/
usn	www.usn.ubuntu.com/usn/usn-3496-3/

01 Jan 2018 01:17Current

2.6Low risk

Vulners AI Score2.6

CVSS 27.5

CVSS 3.19.8

EPSS0.0359

python security string decoding vulnerability cve-2017-1000158 unix