[ubuntu/jammy-security] python3.10 3.10.6-1~22.04.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Nov 3 12:44:03 UTC 2022
python3.10 (3.10.6-1~22.04.1) jammy-security; urgency=medium
* SECURITY UPDATE: privilege escalation via multiprocessing forkserver
start method
- debian/patches/CVE-2022-42919.patch: don't use Linux abstract sockets
in Lib/multiprocessing/connection.py.
- CVE-2022-42919
python3.10 (3.10.6-1~22.04) jammy-proposed; urgency=medium
* SRU: LP: #1982108: Backport 3.10.6 to 20.04 LTS.
python3.10 (3.10.6-1) unstable; urgency=medium
* Python 3.10.6 release.
[ Leonidas Da Silva Barbosa ]
* SECURITY UPDATE: Injection Attack
- debian/patches/CVE-2015-20107.patch: Make mailcap refuse to match unsafe
filenames/types/param in Lib/mailcap.py, Lib/test/test_mailcap.py.
- CVE-2015-20107
python3.10 (3.10.5-1) unstable; urgency=medium
* Python 3.10.5 release.
* Update VCS attributes.
python3.10 (3.10.4-4) unstable; urgency=medium
* Source-only upload.
* Backport gh-78214: marshal: Stabilize FLAG_REF usage. Closes: #1010368.
Date: 2022-11-03 00:27:36.688563+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Maintainer: Matthias Klose <doko at ubuntu.com>
https://launchpad.net/ubuntu/+source/python3.10/3.10.6-1~22.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list