ALT-BU-2019-3464-1
Branch sisyphus update bulletin.
Package packagekit updated to version 1.1.12-alt2 for branch sisyphus in task 220147.
Closed bugs
Падения во время обновления системы
Closed vulnerabilities
BDU:2018-01554
Уязвимость пакета программ Python, связанная с ошибками при освобождении ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2019-02457
Уязвимость процедуры синтаксического анализа сертификата интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2018-14647
Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization. This could make it easy to conduct denial of service attacks against Expat by constructing an XML document that would cause pathological hash collisions in Expat's internal data structures, consuming large amounts CPU and RAM. The vulnerability exists in Python versions 3.7.0, 3.6.0 through 3.6.6, 3.5.0 through 3.5.6, 3.4.0 through 3.4.9, 2.7.0 through 2.7.15.
- openSUSE-SU-2020:0086
- 105396
- 1041740
- RHSA-2019:1260
- RHSA-2019:2030
- RHSA-2019:3725
- https://bugs.python.org/issue34623
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14647
- [bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image
- [debian-lts-announce] 20190625 [SECURITY] [DLA 1834-1] python2.7 security update
- [debian-lts-announce] 20190625 [SECURITY] [DLA 1835-1] python3.4 security update
- FEDORA-2019-0c91ce7b3c
- USN-3817-1
- USN-3817-2
- DSA-4306
- DSA-4307
- openSUSE-SU-2020:0086
- DSA-4307
- DSA-4306
- USN-3817-2
- USN-3817-1
- FEDORA-2019-0c91ce7b3c
- [debian-lts-announce] 20190625 [SECURITY] [DLA 1835-1] python3.4 security update
- [debian-lts-announce] 20190625 [SECURITY] [DLA 1834-1] python2.7 security update
- [bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14647
- https://bugs.python.org/issue34623
- RHSA-2019:3725
- RHSA-2019:2030
- RHSA-2019:1260
- 1041740
- 105396
Modified: 2024-11-21
CVE-2019-5010
An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability.
- openSUSE-SU-2020:0086
- openSUSE-SU-2020:0086
- RHSA-2019:3520
- RHSA-2019:3520
- RHSA-2019:3725
- RHSA-2019:3725
- [bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image
- [bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image
- [debian-lts-announce] 20200715 [SECURITY] [DLA 2280-1] python3.5 security update
- [debian-lts-announce] 20200715 [SECURITY] [DLA 2280-1] python3.5 security update
- [debian-lts-announce] 20200822 [SECURITY] [DLA 2337-1] python2.7 security update
- [debian-lts-announce] 20200822 [SECURITY] [DLA 2337-1] python2.7 security update
- GLSA-202003-26
- GLSA-202003-26
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0758
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0758
Closed bugs
rpm-build-python3 нет в Requires
Closed bugs
Не хватает зависимости на python-module-toml