Release Info

Advisory: CLSA-2022:1658347744

OS: CentOS 8.5 ELS

Public date: 2022-07-20 00:00:00

Project: python2

Version: 2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2

Errata link: https://errata.cloudlinux.com/centos8.5-els/CLSA-2022-1658347744.html

Changelog

- CVE-2015-20107: mailcap: findmatch() function does not sanitise the second argument allowing to inject shell commands

Update

Update command: dnf update python2*

Packages list

python2-tkinter-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm python2-test-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm python2-debug-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm python2-libs-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm python2-tools-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm python2-devel-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm python2-2.7.18-7.module_el8.5.0+2070+77770ab7.tuxcare.els2.x86_64.rpm

CVEs

CVE-2015-20107