Explore top 10 tips to secure your open-source projects now. Read More
×
Python could be made to redirect web traffic if its http.server
received a specially crafted request.
Software Description:
- python3.5: An interactive high-level object-oriented language
Details:
It was discovered that the Python http.server module incorrectly handled
certain URIs. An attacker could potentially use this to redirect web
traffic.
The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: libpython3.5 3.5.2-2ubuntu0~16.04.13+esm5 libpython3.5-minimal 3.5.2-2ubuntu0~16.04.13+esm5 libpython3.5-stdlib 3.5.2-2ubuntu0~16.04.13+esm5 python3.5 3.5.2-2ubuntu0~16.04.13+esm5 python3.5-minimal 3.5.2-2ubuntu0~16.04.13+esm5 After a standard system update you need to restart the python3 http.server to make all the necessary changes.
https://ubuntu.com/security/notices/USN-5629-1
CVE-2021-28861
Get the latest Linux and open source security news straight to your inbox.