[ubuntu/dapper-security] python2.4 (delayed), python2.4 2.4.3-0ubuntu6.4 (Accepted)

Ubuntu Installer archive at ubuntu.com
Fri Jan 22 14:04:41 GMT 2010


python2.4 (2.4.3-0ubuntu6.4) dapper-security; urgency=low

  * SECURITY UPDATE: fix DoS via malformed XML
    - debian/patches/CVE-2009-3720.dpatch: update Modules/expat/xmltok_impl.c
      to not access beyond end of input string
    - CVE-2009-3720
  * SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
    - debian/patches/CVE-2009-3560.dpatch: update Modules/expat/xmlparse.c to
      properly recognize the end of a token
    - CVE-2009-3560

Date: Thu, 21 Jan 2010 08:38:11 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Matthias Klose <doko at debian.org>
https://launchpad.net/ubuntu/dapper/+source/python2.4/2.4.3-0ubuntu6.4
-------------- next part --------------
Format: 1.7
Date: Thu, 21 Jan 2010 08:38:11 -0600
Source: python2.4
Binary: python2.4-doc python2.4-dbg python2.4 python2.4-tk idle-python2.4 python2.4-examples python2.4-minimal python2.4-gdbm python2.4-dev
Architecture: source
Version: 2.4.3-0ubuntu6.4
Distribution: dapper-security
Urgency: low
Maintainer: Matthias Klose <doko at debian.org>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 idle-python2.4 - An IDE for Python (v2.4) using Tkinter
 python2.4  - An interactive high-level object-oriented language (version 2.4)
 python2.4-dbg - Debug Build of the Python Interpreter (version 2.4)
 python2.4-dev - Header files and a static library for Python (v2.4)
 python2.4-doc - Documentation for the high-level object-oriented language Python 
 python2.4-examples - Examples for the Python language (v2.4)
 python2.4-gdbm - GNU dbm database support for Python (v2.4)
 python2.4-minimal - A minimal subset of the Python language (version 2.4)
 python2.4-tk - Tkinter - Writing Tk applications with Python (v2.4)
Changes: 
 python2.4 (2.4.3-0ubuntu6.4) dapper-security; urgency=low
 .
   * SECURITY UPDATE: fix DoS via malformed XML
     - debian/patches/CVE-2009-3720.dpatch: update Modules/expat/xmltok_impl.c
       to not access beyond end of input string
     - CVE-2009-3720
   * SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
     - debian/patches/CVE-2009-3560.dpatch: update Modules/expat/xmlparse.c to
       properly recognize the end of a token
     - CVE-2009-3560
Files: 
 531ed5726641e53070416713ae73fc13 1231 python optional python2.4_2.4.3-0ubuntu6.4.dsc
 5de4651cbd7cde17234d4211ba2411ae 2664095 python optional python2.4_2.4.3-0ubuntu6.4.diff.gz


More information about the dapper-changes mailing list