Fedora 40: FEDORA-2024-247e9ba33a Critical Issue in python-setuptools RCE
fedora
August 8, 2024
Security fix for CVE-2024-6345.
Summary
Setuptools is a collection of enhancements to the Python distutils that allow
you to more easily build and distribute Python packages, especially ones that
have dependencies on other packages.
This package also contains the runtime components of setuptools, necessary to
execute the software that requires pkg_resources.
Update Information:
Security fix for CVE-2024-6345.
Topics Covered
Change Log
* Fri Jul 26 2024 Lumir Balhar
References
[ 1 ] Bug #2297771 - CVE-2024-6345 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools
https://bugzilla.redhat.com/show_bug.cgi?id=2297771
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-247e9ba33a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: python-setuptools
Product: Fedora 40
Version: 69.0.3
Release: 4.fc40
Summary: Easily build and distribute Python packages
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!