Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Slackware 14.x: 2018-124-01 Critical Denial Of Service Fix

slackware
Calendar Grey May 4, 2018
Dist Slackware Esm H88
Recent Python libraries released for Slackware aim to address a range of vital security vulnerabilities impacting various system iterations.
New python packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/python-2.7.15-i586-1_slack14.2.txz: Upgraded. Updated to the latest 2.7.x release. This fixes some security issues in difflib and poplib (regexes vulnerable to denial of service attacks), as well as security issues with the bundled expat library. For more information, see: https://www.cve.org/CVERecord?id=CVE-2012-0876 https://www.cve.org/CVERecord?id=CVE-2016-0718 https://www.cve.org/CVERecord?id=CVE-2016-0718 https://www.cve.org/CVERecord?id=CVE-2016-4472 https://www.cve.org/CVERecord?id=CVE-2016-5300 https://www.cve.org/CVERecord?id=CVE-2016-9063 https://www.cve.org/CVERecord?id=CVE-2017-9233 https://www.cve.org/CVERecord?id=CVE-2018-1060 https://www.cve.org/CVERecord?id=CVE-2018-1061 (* Security fix *)

Topics%20covered

Topics Covered

security advisory denial of service update Slackware python software package

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.0 package: 815f18de185a913b37f8a4a5ba209a33 python-2.7.15-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: ac2745d0977849cf16ad3b386ad6e706 python-2.7.15-x86_64-1_slack14.0.txz
Slackware 14.1 package: 96fa93f516bfefae9539d8d5329fe8e1 python-2.7.15-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 5895cf391b0de5746e4c23c5c34dd50f python-2.7.15-x86_64-1_slack14.1.txz
Slackware 14.2 package: 82212eec089fe925da83e47d5b829b3e python-2.7.15-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: 9ca1bd6126f729067fc507271889643e python-2.7.15-x86_64-1_slack14.2.txz
Slackware -current package: fa60bc913282d7992f5cf8b29863a411 d/python-2.7.15-i586-1.txz
Slackware x86_64 -current package: 0d473b473463c6927a1efaab6e6f601d d/python-2.7.15-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory denial of service update Slackware python software package

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg python-2.7.15-i586-1_slack14.2.txz

Related News

Your message here