Ubuntu Security Update USN-6513-2: Python vulnerability

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,906
Reaction score
75
Credits
-1,257
USN-6513-1 fixed vulnerabilities in Python. This update provides the corresponding updates for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. Original advisory details: It was discovered that Python incorrectly handled certain plist files. If a user or an automated system were tricked into processing a specially crafted plist file, an attacker could possibly use this issue to consume resources, resulting in a denial of service. (CVE-2022-48564) It was discovered that Python instances of ssl.SSLSocket were vulnerable to a bypass of the TLS handshake. An attacker could possibly use this issue to cause applications to treat unauthenticated received data before TLS handshake as authenticated data after TLS handshake. (CVE-2023-40217)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8123-1: Mbed TLS vulnerabilities
Replies
0
Views
173
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8286-1: OpenVPN vulnerabilities
Replies
0
Views
87
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8087-3: python-cryptography vulnerability
Replies
0
Views
159
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8018-2: Python regression
Replies
0
Views
160
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8225-1: Python marshmallow vulnerabilities
Replies
0
Views
115
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,417 (members: 2, guests: 2,415)

Latest posts

Top