USN-5083-1: Python vulnerabilities

🗓️ 16 Sep 2021 17:27:34Reported by UbuntuType

ubuntu

ubuntu🔗 ubuntu.com👁 145 Views

Python vulnerabilities in Ubuntu ESM

Reporter	Title	Published	Views	Family All 390
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities found in Java, Node.js and IBM WebSphere Application Server Liberty	15 Apr 202502:54	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium Insights is affected by multipe vulnerabilities	4 Feb 202221:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Python (CVE-2021-3737)	12 Jan 202321:59	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities (CVE-2022-34339, CVE-2021-3712, CVE-2021-3711, CVE-2021-4160, CVE-2021-29425, CVE-2021-3733, CVE-2021-3737, CVE-2022-0391, CVE-2021-43138, CVE-2022-24758)	26 Mar 202502:27	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM includes components with known vulnerabilities	6 Jul 202318:48	–	ibm
IBM Security Bulletins	Security Bulletin: Python (Publicly disclosed vulnerability) in IBM Tivoli Application Dependency Discovery Manager (CVE-2021-3733)	18 Nov 202212:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	16 Jun 202315:20	–	ibm
IBM Security Bulletins	Security Bulletin: A buffer overread, security restrictions bypass, a use-after-free, and other vulnerabilities might affect IBM Storage Defender – Resiliency Service	25 Mar 202523:50	–	ibm
IBM Security Bulletins	Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - Python (CVE-2021-3733)	22 Apr 202220:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Samba, OpenSSL, Python, and XStream affect IBM Spectrum Protect Plus (CVE-2021-20254, CVE-2021-3712, CVE-2021-43859, CVE-2022-0778, CVE-2020-25717, CVE-2021-23192, CVE-2021-3733)	30 Jun 202203:51	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	14.04	any	idle-python3.4	3.4.3-1ubuntu1~14.04.7+esm11	idle-python3.4_3.4.3-1ubuntu1~14.04.7+esm11_any.deb
Ubuntu	16.04	any	idle-python3.5	3.5.2-2ubuntu0~16.04.13+esm1	idle-python3.5_3.5.2-2ubuntu0~16.04.13+esm1_any.deb
Ubuntu	14.04	any	libpython3.4	3.4.3-1ubuntu1~14.04.7+esm11	libpython3.4_3.4.3-1ubuntu1~14.04.7+esm11_any.deb
Ubuntu	14.04	any	libpython3.4-dev	3.4.3-1ubuntu1~14.04.7+esm11	libpython3.4-dev_3.4.3-1ubuntu1~14.04.7+esm11_any.deb
Ubuntu	14.04	any	libpython3.4-minimal	3.4.3-1ubuntu1~14.04.7+esm11	libpython3.4-minimal_3.4.3-1ubuntu1~14.04.7+esm11_any.deb
Ubuntu	14.04	any	libpython3.4-stdlib	3.4.3-1ubuntu1~14.04.7+esm11	libpython3.4-stdlib_3.4.3-1ubuntu1~14.04.7+esm11_any.deb
Ubuntu	14.04	any	libpython3.4-testsuite	3.4.3-1ubuntu1~14.04.7+esm11	libpython3.4-testsuite_3.4.3-1ubuntu1~14.04.7+esm11_any.deb
Ubuntu	16.04	any	libpython3.5	3.5.2-2ubuntu0~16.04.13+esm1	libpython3.5_3.5.2-2ubuntu0~16.04.13+esm1_any.deb
Ubuntu	16.04	any	libpython3.5-dev	3.5.2-2ubuntu0~16.04.13+esm1	libpython3.5-dev_3.5.2-2ubuntu0~16.04.13+esm1_any.deb
Ubuntu	16.04	any	libpython3.5-minimal	3.5.2-2ubuntu0~16.04.13+esm1	libpython3.5-minimal_3.5.2-2ubuntu0~16.04.13+esm1_any.deb

16 Sep 2021 17:27Current

7High risk

Vulners AI Score7

CVSS 27.1

CVSS 3.17.5

EPSS0.00629

SSVC

ubuntu 16.04 esm ubuntu 14.04 esm python vulnerabilities denial of service cve-2021-3733 cve-2021-3737 python3.4 python3.5 object-oriented language rfcs server responses unix