python-2.7.5-94.0.3.el7.AXS7

エラータID: AXSA:2024-8926:48

Release date: 
Tuesday, October 22, 2024 - 09:15
Subject: 
python-2.7.5-94.0.3.el7.AXS7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

Python is an interpreted, interactive, object-oriented programming language
often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes,
exceptions, very high level dynamic data types and dynamic typing. Python
supports interfaces to many system calls and libraries, as well as to various
windowing systems (X11, Motif, Tk, Mac and MFC).

Programmers can write new built-in modules for Python in C or C++. Python can be
used as an extension language for applications that need a programmable
interface.

Note that documentation for Python is provided in the python-docs package.

This package provides the "python" executable; most of the actual implementation
is within the "python-libs" package.

Security Fix(es):

* CVE-2024-6232: fixed regular expressions that allowed excessive backtracking
during tarfile.TarFile header parsing are vulnerable to ReDoS via
specifically-crafted tar archives.

CVE(s):
CVE-2024-6232
There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

Asianux Server 7 for x86_64
  1. python-2.7.5-94.0.3.el7.AXS7.x86_64.rpm
    MD5: 94257a7434b5bae310308f6a8875dd33
    SHA-256: 8ad131eea0b376353adc35e025f21a7aca8e4ec32e1b53e2934c71947a05a976
    Size: 96.84 kB
  2. python-devel-2.7.5-94.0.3.el7.AXS7.x86_64.rpm
    MD5: 3d4a0665c3de9e7be495abb02a1e8451
    SHA-256: ee32be32e5dd0c4e839f78d1ce939026227a32a143ff2fe64e0856468f56fcd2
    Size: 399.47 kB
  3. python-libs-2.7.5-94.0.3.el7.AXS7.i686.rpm
    MD5: 2b6592df9c6ec2e979e925b9b321e2a2
    SHA-256: c0ce24f7952273d2c80d1664a0083ecf4a6473d890db16a296bd134e335a750d
    Size: 5.60 MB
  4. python-libs-2.7.5-94.0.3.el7.AXS7.x86_64.rpm
    MD5: b6414cbfb4d1a301f5682377c02dc884
    SHA-256: b7a49c6fa1b16a764d8abb142e7d0f1b19fd9fb276efff7b3a50d3ab883c0061
    Size: 5.65 MB