Release Info

Advisory: CLSA-2022:1658347999

OS: CentOS 8.5 ELS

Public date: 2022-07-20 00:00:00

Project: python3

Version: 3.6.8-41.el8.tuxcare.els2

Errata link: https://errata.cloudlinux.com/centos8.5-els/CLSA-2022-1658347999.html

Changelog

- CVE-2015-20170: mailcap: findmatch() function does not sanitise the second argument allowing to inject shell commands

Update

Update command: dnf update python3*

Packages list

python3-devel-3.6.8-41.el8.tuxcare.els2.x86_64.rpm python3-tkinter-3.6.8-41.el8.tuxcare.els2.i686.rpm python3-idle-3.6.8-41.el8.tuxcare.els2.x86_64.rpm platform-python-3.6.8-41.el8.tuxcare.els2.i686.rpm python3-libs-3.6.8-41.el8.tuxcare.els2.i686.rpm platform-python-debug-3.6.8-41.el8.tuxcare.els2.x86_64.rpm platform-python-devel-3.6.8-41.el8.tuxcare.els2.x86_64.rpm platform-python-3.6.8-41.el8.tuxcare.els2.x86_64.rpm python3-tkinter-3.6.8-41.el8.tuxcare.els2.x86_64.rpm platform-python-debug-3.6.8-41.el8.tuxcare.els2.i686.rpm python3-test-3.6.8-41.el8.tuxcare.els2.i686.rpm python3-libs-3.6.8-41.el8.tuxcare.els2.x86_64.rpm python3-idle-3.6.8-41.el8.tuxcare.els2.i686.rpm platform-python-devel-3.6.8-41.el8.tuxcare.els2.i686.rpm python3-test-3.6.8-41.el8.tuxcare.els2.x86_64.rpm

CVEs

CVE-2015-20107