Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Ubuntu 17.04 Moderate: USN-3496-1 Python Arbitrary Code Execution

Calendar Nov 28, 2017 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory software update arbitrary code execution moderate threat ubuntu python
Python could be made to run arbitrary code. 
=========================================================================Ubuntu Security Notice USN-3496-1
November 28, 2017

python2.7 vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 17.04
- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

Python could be made to run arbitrary code.

Software Description:
- python2.7: An interactive high-level object-oriented language

Details:

It was discovered that Python incorrectly handled decoding certain
strings. An attacker could possibly use this issue to execute arbitrary
code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
  python2.7                       2.7.13-2ubuntu0.1
  python2.7-minimal               2.7.13-2ubuntu0.1

Ubuntu 16.04 LTS:
  python2.7                       2.7.12-1ubuntu0~16.04.2
  python2.7-minimal               2.7.12-1ubuntu0~16.04.2

Ubuntu 14.04 LTS:
  python2.7                       2.7.6-8ubuntu0.4
  python2.7-minimal               2.7.6-8ubuntu0.4

In general, a standard system update will make all the necessary
changes.

References:
  
  CVE-2017-1000158

Package Information:
  https://launchpad.net/ubuntu/+source/python2.7/2.7.13-2ubuntu0.1
  .
2
  https://launchpad.net/ubuntu/+source/python2.7/2.7.6-8ubuntu0.4

Ubuntu 17.04 Moderate: USN-3496-1 Python Arbitrary Code Execution

ubuntu
Calendar Grey November 28, 2017
Dist Ubuntu Esm H88
Debian Security Notice DSN-2118-3 concerns a php7.4 vulnerability leading to potential unauthorized access. Immediate update recommended.
Python could be made to run arbitrary code.

Summary

Topics%20covered

Topics Covered

security advisory software update arbitrary code execution moderate threat ubuntu python

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 17.04:   python2.7                       2.7.13-2ubuntu0.1   python2.7-minimal               2.7.13-2ubuntu0.1 Ubuntu 16.04 LTS:   python2.7                       2.7.12-1ubuntu0~16.04.2   python2.7-minimal               2.7.12-1ubuntu0~16.04.2 Ubuntu 14.04 LTS:   python2.7                       2.7.6-8ubuntu0.4   python2.7-minimal               2.7.6-8ubuntu0.4 In general, a standard system update will make all the necessary changes.

References

 

  CVE-2017-1000158

Severity
important
Lowest
Low
Medium
High
Critical

November 28, 2017

Topics%20covered

Topics Covered

security advisory software update arbitrary code execution moderate threat ubuntu python

Package Information

  https://launchpad.net/ubuntu/+source/python2.7/2.7.13-2ubuntu0.1   . 2   https://launchpad.net/ubuntu/+source/python2.7/2.7.6-8ubuntu0.4

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here