python-2.7.5-94.0.4.el7.AXS7

Python is an interpreted, interactive, object-oriented programming language
often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes,
exceptions, very high level dynamic data types and dynamic typing. Python
supports interfaces to many system calls and libraries, as well as to various
windowing systems (X11, Motif, Tk, Mac and MFC).

Programmers can write new built-in modules for Python in C or C++. Python can be
used as an extension language for applications that need a programmable
interface.

Note that documentation for Python is provided in the python-docs package.

This package provides the "python" executable; most of the actual implementation
is within the "python-libs" package.

Security Fix(es):

* CVE-2024-7592: fix algorithm with quadratic complexity to avoid using excess
CPU resources while parsing the cookie value.

CVE(s):
CVE-2024-7592
There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard library module. When parsing cookies that contained backslashes for quoted characters in the cookie value, the parser would use an algorithm with quadratic complexity, resulting in excess CPU resources being used while parsing the value.