Release Info

Advisory: CLSA-2023:1689259392

OS: Ubuntu 18.04 ELS

Public date: 2023-07-13 10:43:14

Project: python3.6

Version: 3.6.9-1~18.04ubuntu1.12+tuxcare.els2

Errata link: https://errata.cloudlinux.com/ubuntu18-els/CLSA-2023-1689259392.html

Changelog

* SECURITY UPDATE: Redirection vulnerability in http.server - debian/patches/CVE-2021-28861.patch: Fix an open redirection vulnerability in the `http.server` module when an URI path starts with `//` - debian/patches/expat-regression.patch: some tests were fixed - CVE-2021-28861

Update

Update command: apt-get update apt-get --only-upgrade install python3.6*

Packages list

idle-python3.6_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_all.deb libpython3.6_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb libpython3.6-dev_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb libpython3.6-minimal_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb libpython3.6-stdlib_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb libpython3.6-testsuite_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_all.deb python3.6_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb python3.6-dev_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb python3.6-doc_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_all.deb python3.6-examples_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_all.deb python3.6-minimal_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb python3.6-venv_3.6.9-1~18.04ubuntu1.12+tuxcare.els2_amd64.deb

CVEs

CVE-2021-28861