Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Can sandbox isolation stop malware?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/154-can-sandbox-isolation-stop-malware?task=poll.vote&format=json
154
radio
0
[{"id":497,"title":"Breaches happen despite container barriers.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":498,"title":"Supply chain flaws exploit trust.","votes":2,"type":"x","order":2,"pct":100,"resources":[]},{"id":499,"title":"Flawed configurations expose vital files.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -8 articles for you...
172

Ubuntu 18.04 LTS: USN-4581-1 Critical: Python CRLF Injection

Python could be used to perform a CRLF injection if it received a specially crafted request.. =========================================================================Ubuntu Security Notice USN-4581-1 October 14, 2020 python2.7, python3.4, python3.5, python3.6 vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 ESM - Ubuntu 12.04 ESM Summary: Python could be used to perform a CRLF injection if it received a specially crafted request. Software Description: - python2.7: An interactive high-level object-oriented language - python3.6: An interactive high-level object-oriented language - python3.5: An interactive high-level object-oriented language - python3.4: An interactive high-level object-oriented language Details: It was discovered that Python incorrectly handled certain character sequences. A remote attacker could possibly use this issue to perform CRLF injection. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: python2.7 2.7.17-1~18.04ubuntu1.2 python2.7-minimal 2.7.17-1~18.04ubuntu1.2 python3.6 3.6.9-1~18.04ubuntu1.3 python3.6-minimal 3.6.9-1~18.04ubuntu1.3 Ubuntu 16.04 LTS: python2.7 2.7.12-1ubuntu0~16.04.13 python2.7-minimal 2.7.12-1ubuntu0~16.04.13 python3.5 3.5.2-2ubuntu0~16.04.12 python3.5-minimal 3.5.2-2ubuntu0~16.04.12 Ubuntu 14.04 ESM: python2.7 2.7.6-8ubuntu0.6+esm7 python2.7-minimal 2.7.6-8ubuntu0.6+esm7 python3.4 3.4.3-1ubuntu1~14.04.7+esm8 python3.4-minimal 3.4.3-1ubuntu1~14.04.7+esm8 Ubuntu 12.04 ESM: python2.7 2.7.3-0ubuntu3.19 python2.7-minimal 2.7.3-0ubuntu3.19 Ingeneral, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4581-1 CVE-2020-26116 Package Information: https://launchpad.net/ubuntu/+source/python2.7/2.7.17-1~18.04ubuntu1.2 https://launchpad.net/ubuntu/+source/python3.6/3.6.9-1~18.04ubuntu1.3 https://launchpad.net/ubuntu/+source/python2.7/2.7.12-1ubuntu0~16.04.13 https://launchpad.net/ubuntu/+source/python3.5/3.5.2-2ubuntu0~16.04.12 . A recent Ubuntu Security Bulletin USN-4581-1 highlights a vulnerability related to Python, affecting various builds. Guidance for remediation is provided.. Python Security Flaw, Ubuntu Update, Injection Vulnerability, Security Notice, Software Patch. . LinuxSecurity.com Team

Calendar%202 Oct 14, 2020 Ubuntu
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Can sandbox isolation stop malware?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/154-can-sandbox-isolation-stop-malware?task=poll.vote&format=json
154
radio
0
[{"id":497,"title":"Breaches happen despite container barriers.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":498,"title":"Supply chain flaws exploit trust.","votes":2,"type":"x","order":2,"pct":100,"resources":[]},{"id":499,"title":"Flawed configurations expose vital files.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Your message here