Lucene search
OracleLinuxELSA-2020-3888HistoryOct 06, 2020 - 12:00 a.m.
python3 security update
2020-10-0600:00:00
linux.oracle.com
35
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
[3.6.8-17.0.1]
- Add Oracle Linux distribution in platform.py [Orabug: 20812544]
[3.6.8-17] - Overhaul pythons FIPS mode support
Resolves: rhbz#1788459
[3.6.8-16] - Security fix for CVE-2020-8492
Resolves: rhbz#1810616
[3.6.8-15] - Security fix for CVE-2019-16935
Resolves: rhbz#1797999
[3.6.8-14] - Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | python3 | < 3.6.8-17.0.1.el7 | python3-3.6.8-17.0.1.el7.src.rpm |
| oracle linux | 7 | aarch64 | python3 | < 3.6.8-17.0.1.el7 | python3-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | python3-debug | < 3.6.8-17.0.1.el7 | python3-debug-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | python3-devel | < 3.6.8-17.0.1.el7 | python3-devel-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | python3-idle | < 3.6.8-17.0.1.el7 | python3-idle-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | python3-libs | < 3.6.8-17.0.1.el7 | python3-libs-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | python3-test | < 3.6.8-17.0.1.el7 | python3-test-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | python3-tkinter | < 3.6.8-17.0.1.el7 | python3-tkinter-3.6.8-17.0.1.el7.aarch64.rpm |
| oracle linux | 7 | src | python3 | < 3.6.8-17.0.1.el7 | python3-3.6.8-17.0.1.el7.src.rpm |
| oracle linux | 7 | i686 | python3 | < 3.6.8-17.0.1.el7 | python3-3.6.8-17.0.1.el7.i686.rpm |
Related
nessus
nessus
Oracle Linux 7 : python3 (ELSA-2020-3888)
2020-10-07 00:00:00
CentOS 7 : python3 (CESA-2020:3888)
2020-10-20 00:00:00
Scientific Linux Security Update : python3 on SL7.x x86_64 (20201001)
2020-10-21 00:00:00
centos
centos
python3 security update
2020-10-20 18:48:39
python, tkinter security update
2020-10-20 18:48:10
redhat
redhat
(RHSA-2020:3888) Moderate: python3 security update
2020-09-29 07:40:56
(RHSA-2020:4433) Moderate: python3 security and bug fix update
2020-11-03 12:04:08
(RHSA-2020:3911) Moderate: python security update
2020-09-29 07:42:55
almalinux
almalinux
Moderate: python3 security and bug fix update
2020-11-03 12:04:08
oraclelinux
oraclelinux
python3 security and bug fix update
2020-11-10 00:00:00
python security update
2020-10-06 00:00:00
ibm
ibm
redhatcve
redhatcve
CVE-2019-16935
2020-03-29 02:10:40
CVE-2020-8492
2020-03-02 11:41:02
symantec
symantec
Python CVE-2019-16935 CRLF Multiple Cross Site Scripting Vulnerabilities
2019-09-30 00:00:00
cve
cve
CVE-2019-16935
2019-09-28 02:15:00
CVE-2020-8492
2020-01-30 19:15:00
hackerone
hackerone
Internet Bug Bounty: A reflected XSS in python/Lib/DocXMLRPCServer.py
2019-10-01 14:21:18
openvas
openvas
amazon
amazon
Medium: python27, python35, python36
2020-02-10 23:33:00
Medium: python26
2020-07-27 23:54:00
Medium: python, python3
2020-07-31 19:22:00
ubuntucve
ubuntucve
CVE-2019-16935
2019-09-28 00:00:00
CVE-2020-8492
2020-01-30 00:00:00
osv
osv
Reflected XSS in DocXMLRPCServer
2019-09-28 01:33:02
CVE-2019-16935
2019-09-28 02:15:10
Regular Expression Denial of Service in http.cookiejar
2019-11-14 00:00:00
prion
prion
Input validation
2019-09-28 02:15:00
Code injection
2020-01-30 19:15:00
debiancve
debiancve
CVE-2019-16935
2019-09-28 02:15:00
CVE-2020-8492
2020-01-30 19:15:00
f5
f5
K000134818 : Python XML RPC vulnerability CVE-2019-16935
2023-05-26 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-05-10 23:24:03
Denial Of Service (DoS)
2020-08-06 21:33:11
alpinelinux
alpinelinux
CVE-2019-16935
2019-09-28 02:15:00
CVE-2020-8492
2020-01-30 19:15:00
fedora
fedora
[SECURITY] Fedora 32 Update: python3-3.8.3-1.fc32
2020-05-26 03:14:58
[SECURITY] Fedora 31 Update: python38-3.8.3-1.fc31
2020-05-29 02:27:10
[SECURITY] Fedora 31 Update: python36-3.6.10-1.fc31
2020-01-12 01:46:59
gentoo
gentoo
Python: Denial of service
2020-05-14 00:00:00
freebsd
freebsd
Python -- Regular Expression DoS attack against client
2019-11-17 00:00:00
tauthon -- Regular Expression Denial of Service
2020-01-30 00:00:00
Python -- multiple vulnerabilities
2019-10-24 00:00:00
debian
debian
[SECURITY] [DLA 2628-1] python2.7 security update
2021-04-17 19:31:24
cloudfoundry
cloudfoundry
USN-4151-1: Python vulnerabilities | Cloud Foundry
2019-11-06 00:00:00
USN-4333-1: Python vulnerabilities | Cloud Foundry
2020-05-14 00:00:00
suse
suse
Security update for python3 (moderate)
2019-11-05 00:00:00
Security update for python3 (moderate)
2019-11-09 00:00:00
Security update for python3 (moderate)
2020-03-01 00:00:00
ubuntu
ubuntu
Python vulnerabilities
2019-10-09 00:00:00
Python vulnerabilities
2019-10-10 00:00:00
Python vulnerabilities
2020-04-21 00:00:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
Related for ELSA-2020-3888