Bugs fixes in "python3.4"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2018-14647 | Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization. This could make it easy to conduct denial of service | 2018-11-13 |
| CVE | CVE-2018-1061 | python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An | 2018-11-13 |
| CVE | CVE-2018-1060 | python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacke | 2018-11-13 |
| CVE | CVE-2018-1000802 | Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command In | 2018-11-13 |
| CVE | CVE-2018-14647 | Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization. This could make it easy to conduct denial of service | 2018-11-13 |
| CVE | CVE-2018-1061 | python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An | 2018-11-13 |
| CVE | CVE-2018-1060 | python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacke | 2018-11-13 |
| CVE | CVE-2018-1000802 | Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command In | 2018-11-13 |
| CVE | CVE-2016-5699 | CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython (aka Python) before 2.7.10 and 3.x before 3.4. | 2016-11-22 |
| CVE | CVE-2016-5636 | Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remot | 2016-11-22 |
| CVE | CVE-2016-1000 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202. | 2016-11-22 |
| CVE | CVE-2016-0772 | The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, whi | 2016-11-22 |
| CVE | CVE-2016-5699 | CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython (aka Python) before 2.7.10 and 3.x before 3.4. | 2016-11-22 |
| CVE | CVE-2016-5636 | Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remot | 2016-11-22 |
| CVE | CVE-2016-1000 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202. | 2016-11-22 |
| CVE | CVE-2016-0772 | The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, whi | 2016-11-22 |
| Launchpad | 1620754 | hash(datetime.datetime(...)) fails with python3.5 on armhf (on an arm64 host) with a bus error | 2016-09-22 |
| Launchpad | 1620754 | hash(datetime.datetime(...)) fails with python3.5 on armhf (on an arm64 host) with a bus error | 2016-09-14 |
| Launchpad | 1264554 | python3.4 autopkg test failures | 2015-09-23 |
| Launchpad | 1348954 | update Python3 for trusty | 2015-07-17 |
About
-
Send Feedback to @ubuntu_updates
