Ubuntu 5632-1: OAuthLib vulnerability | LinuxSecurity.com
==========================================================================
Ubuntu Security Notice USN-5632-1
September 22, 2022

python-oauthlib vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS

Summary:

OAuthLib could be made to crash if it received specially crafted network
traffic.

Software Description:
- python-oauthlib: generic, spec-compliant implementation of OAuth for Python3

Details:

Sebastian Chnelik discovered that OAuthLib incorrectly handled certain
redirect uris. A remote attacker could possibly use this issue to cause
OAuthLib to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
  python3-oauthlib                3.2.0-1ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-5632-1
  CVE-2022-36087

Package Information:
  https://launchpad.net/ubuntu/+source/python-oauthlib/3.2.0-1ubuntu0.1

Ubuntu 5632-1: OAuthLib vulnerability

September 22, 2022

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: OAuthLib could be made to crash if it received specially crafted network traffic. Software Description: - python-oauthlib: generic, spec-compliant implementation of OAuth for Python3 Details: Sebastian Chnelik discovered that OAuthLib incorrectly handled certain redirect uris. A remote attacker could possibly use this issue to cause OAuthLib to crash, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS: python3-oauthlib 3.2.0-1ubuntu0.1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5632-1

CVE-2022-36087

Severity
Ubuntu Security Notice USN-5632-1

Package Information

https://launchpad.net/ubuntu/+source/python-oauthlib/3.2.0-1ubuntu0.1

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.