Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

Fedora 27: FEDORA-2017-99d12bf610 moderate: python heap buffer overflow

fedora
Calendar Grey December 19, 2017
Dist Fedora Esm H88
A resolution for CVE-2017-1000158 targeting integer overflow in Python 3.5 has been released. Ensure your system is secure by upgrading through dnf on Fedora 27.
Security fix for CVE-2017-1000158

Summary

Python 3.5 package for developers.

This package exists to allow developers to test their code against an older

version of Python. This is not a full Python stack and if you wish to run

your applications with Python 3.5, see other distributions

that support it, such as CentOS or RHEL with Software Collections

or older Fedora releases.

Security fix for CVE-2017-1000158

[ 1 ] Bug #1519595 - CVE-2017-1000158 python: Integer overflow in PyString_DecodeEscape results in heap-base buffer overflow

https://bugzilla.redhat.com/show_bug.cgi?id=1519595

su -c 'dnf upgrade python35' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Change Log

References

Update Instructions

Product: Fedora 27
Version: 3.5.4
Release: 2.fc27
Summary: Version 3.5 of the Python programming language

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.