RHSA-2024:2987 -- Redhat python2ID: oval:org.secpod.oval:def:509387 | Date: (C)2024-06-05 (M)2024-06-05 |
Class: PATCH | Family: unix |
Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for MySQL and PostgreSQL. Security Fix: pypa-setuptools: Regular Expression Denial of Service in package_index.py python: use after free in heappushpop of heapq module python: XML External Entity in XML processing plistlib module python-urllib3: Cookie request header isn"t stripped during cross-origin redirects jinja2: HTML attribute injection when passing user input as keys to xmlattr filter For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.10 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
babel |
python2 |
python-psycopg2-doc |
python-sqlalchemy-doc |