Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Red Hat: RHSA-2007:1077-01 Moderate: Python Code Execution Risks and Fixes

red hat
Calendar Grey December 10, 2007
Dist Redhat Esm H88
Red Hat's latest advisory on their Python update reveals key vulnerabilities in package management, urging users to promptly apply updates for enhanced security
Updated python packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at

5. Bug IDs fixed (http://bugzilla.redhat.com/):

235093 - CVE-2007-2052 Off-by-one in python's locale.strxfrm() 383371 - CVE-2006-7228 pcre integer overflow

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 :

SRPMS: d187bd2b804cb0aa532b1d7ea1abe927 python-1.5.2-43.72.2.src.rpm

i386: 2eedfdef76a114b2249a0d8aead905c8 python-1.5.2-43.72.2.i386.rpm d7bf8b0ceacec84d025fd4ea65f58c77 python-devel-1.5.2-43.72.2.i386.rpm b9218c661a5efac21f011b48553e26f1 python-docs-1.5.2-43.72.2.i386.rpm 865e1d43ac445880137638a8574f8e6f python-tools-1.5.2-43.72.2.i386.rpm 057a0423a93e1bc9d4c01917628aa3af tkinter-1.5.2-43.72.2.i386.rpm

ia64: b81ce154379e65cd37e8cb559eb2ae1d python-1.5.2-43.72.2.ia64.rpm 9f4af6774469976ecc55bcd106aab7eb python-devel-1.5.2-43.72.2.ia64.rpm 7c5b50475dfc7d6874cd79ecca36c706 python-docs-1.5.2-43.72.2.ia64.rpm 484c39c1e535e79d5d36bbe75ff0f9d9 python-tools-1.5.2-43.72.2.ia64.rpm 7f95d845167e93fd722e53ca35e28776 tkinter-1.5.2-43.72.2.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS: d187bd2b804cb0aa532b1d7ea1abe927 python-1.5.2-43.72.2.src.rpm

ia64: b81ce154379e65cd37e8cb559eb2ae1d python-1.5.2-43.72.2.ia64.rpm 9f4af6774469976ecc55bcd106aab7eb python-devel-1.5.2-43.72.2.ia64.rpm 7c5b50475dfc7d6874cd79ecca36c706 python-docs-1.5.2-43.72.2.ia64.rpm 484c39c1e535e79d5d36bbe75ff0f9d9 python-tools-1.5.2-43.72.2.ia64.rpm 7f95d845167e93fd722e53ca35e28776 tkinter-1.5.2-43.72.2.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS: d187bd2b804cb0aa532b1d7ea1abe927 python-1.5.2-43.72.2.src.rpm

i386: 2eedfdef76a114b2249a0d8aead905c8 python-1.5.2-43.72.2.i386.rpm d7bf8b0ceacec84d025fd4ea65f58c77 python-devel-1.5.2-43.72.2.i386.rpm b9218c661a5efac21f011b48553e26f1 python-docs-1.5.2-43.72.2.i386.rpm 865e1d43ac445880137638a8574f8e6f python-tools-1.5.2-43.72.2.i386.rpm 057a0423a93e1bc9d4c01917628aa3af tkinter-1.5.2-43.72.2.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS: d187bd2b804cb0aa532b1d7ea1abe927 python-1.5.2-43.72.2.src.rpm

i386: 2eedfdef76a114b2249a0d8aead905c8 python-1.5.2-43.72.2.i386.rpm d7bf8b0ceacec84d025fd4ea65f58c77 python-devel-1.5.2-43.72.2.i386.rpm b9218c661a5efac21f011b48553e26f1 python-docs-1.5.2-43.72.2.i386.rpm 865e1d43ac445880137638a8574f8e6f python-tools-1.5.2-43.72.2.i386.rpm 057a0423a93e1bc9d4c01917628aa3af tkinter-1.5.2-43.72.2.i386.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2006-7228 https://www.cve.org/CVERecord?id=CVE-2007-2052 https://access.redhat.com/security/updates/classification#moderate

Package List


Advisory ID: RHSA-2007:1077-01
Issue date: 2007-12-10
Updated on: 2007-12-10
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here