Fedora 25: Update 2017-6be762ea64 Critical: Python Heap Overflow

Python is an interpreted, interactive, object-oriented programming

language often compared to Tcl, Perl, Scheme or Java. Python includes

modules, classes, exceptions, very high level dynamic data types and

dynamic typing. Python supports interfaces to many system calls and

libraries, as well as to various windowing systems (X11, Motif, Tk,

Mac and MFC).

Programmers can write new built-in modules for Python in C or C++.

Python can be used as an extension language for applications that need

a programmable interface.

Note that documentation for Python is provided in the python-docs

package.

This package provides the "python" executable; most of the actual

implementation is within the "python-libs" package.

Security fix for CVE-2017-1000158

[ 1 ] Bug #1519595 - CVE-2017-1000158 python: Integer overflow in PyString_DecodeEscape results in heap-base buffer overflow

https://bugzilla.redhat.com/show_bug.cgi?id=1519595

su -c 'dnf upgrade python' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org