[ubuntu/groovy-proposed] python3.8 3.8.2-1ubuntu1.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Fri May 1 15:49:55 UTC 2020
python3.8 (3.8.2-1ubuntu1.1) focal-security; urgency=medium
* SECURITY UPDATE: CRLF injection
- debian/patches/CVE-2019-18348.patch: disallow control characters
in hostnames in http.client in Lib/http/client.py, Lib/test/test_*.py.
- CVE-2019-18348
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2020-8492.patch: fix the regex to prevent
the regex denial of service in Lib/urllib/request.py,
- CVE-2020-8492
Date: 2020-04-27 16:02:16.171179+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/python3.8/3.8.2-1ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Groovy-changes
mailing list