Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Rocky Linux 8 RLSA-2023:3780 Important URL Bypass Fix in Python27

rocky
Calendar Grey June 24, 2023
Rockylinux Esm H88
Essential security patch for python27 resolving url blocklisting evasion on Rocky Linux. Vital for every user.
Important: python27:2.7 security update

Summary

An update is available for module.python-jinja2, numpy, module.python-backports, module.python-setuptools_scm, python-funcsigs, python-backports, python-PyMySQL, python-backports-ssl_match_hostname, module.python2-setuptools, module.python-py, module.python2-six, module.python-markupsafe, module.pytz, pytz, python-dns, module.pytest, PyYAML, module.python-coverage, module.python-wheel, python2-setuptools, module.python-virtualenv, module.numpy, module.python-docs, module.python-backports-ssl_match_hostname, module.babel, python2-six, module.python-docutils, python-psycopg2, python-idna, module.Cython, module.python-mock, module.python-funcsigs, module.python-pysocks, module.scipy, module.python-pluggy, module.python-ipaddress, python-wheel, module.python-chardet, python-pysocks, python-py, python-chardet, python-pluggy, python-urllib3, python-coverage, python2-rpm-macros, python-ipaddress, module.python-urllib3, module.python-pygments, module.PyYAML, python-nose, python-docutils, module.python-idna, python-lxml, python-pymongo, python-markupsafe, python-setuptools_scm, module.python-psycopg2, python-pygments, module.python-pytest-mock, python-requests, python-docs, babel, module.python-requests, python-pytest-mock, module.python-nose, python-sqlalchemy, module.python-sqlalchemy, module.python-attrs, module.python-lxml, Cython, module.python-dns, python-mock, module.python2-pip, scipy, python-attrs, module.python-PyMySQL, module.python-pymongo, python2-pip, python-jinja2, pytest, module.python2-rpm-macros. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RPMs

babel-0:2.5.1-10.module+el8.5.0+706+735ec4b3.noarch.rpm

babel-0:2.5.1-10.module+el8.5.0+706+735ec4b3.src.rpm

Cython-0:0.28.1-7.module+el8.5.0+706+735ec4b3.src.rpm

Cython-debugsource-0:0.28.1-7.module+el8.5.0+706+735ec4b3.aarch64.rpm

Cython-debugsource-0:0.28.1-7.module+el8.5.0+706+735ec4b3.x86_64.rpm

numpy-1:1.14.2-16.module+el8.5.0+706+735ec4b3.src.rpm

numpy-debugsource-1:1.14.2-16.module+el8.5.0+706+735ec4b3.aarch64.rpm

numpy-debugsource-1:1.14.2-16.module+el8.5.0+706+735ec4b3.x86_64.rpm

pytest-0:3.4.2-13.module+el8.5.0+706+735ec4b3.src.rpm

python2-attrs-0:17.4.0-10.module+el8.5.0+706+735ec4b3.noarch.rpm

python2-babel-0:2.5.1-10.module+el8.5.0+706+735ec4b3.noarch.rpm

python2-backports-0:1.0-16.module+el8.4.0+403+9ae17a31.aarch64.rpm

python2-backports-0:1.0-16.module+el8.4.0+403+9ae17a31.x86_64.rpm

python2-backports-ssl_match_hostname-0:3.5.0.1-12.module+el8.4.0+403+9ae17a31.noarch.rpm

python2-bson-0:3.7.0-1.module+el8.5.0+706+735ec4b3.aarch64.rpm

Read the Full Advisory

References

No references

CVES

https://www.cve.org/CVERecord?id=CVE-2023-24329

Severity
important

Name: RLSA-2023:3780
Affected Products: Rocky Linux 8

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2173917


Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here