Stay Connected:

ELSA-2016-2586

ELSA-2016-2586 - python security, bug fix, and enhancement update

Type:SECURITY
Impact:LOW
Release Date:2016-11-09

Description


[2.7.5-48.0.1]
- Add Oracle Linux distribution in platform.py [orabug 20812544]

[2.7.5-48]
- Fix for CVE-2016-1000110 HTTPoxy attack
Resolves: rhbz#1359164

[2.7.5-47]
- Fix for CVE-2016-5636: possible integer overflow and heap corruption in zipimporter.get_data()
Resolves: rhbz#1356364

[2.7.5-46]
- Drop patch 221 that backported sslwrap function since it was introducing regressions
- Refactor patch 227
Resolves: rhbz#1331425

[2.7.5-45]
- Fix for CVE-2016-0772 python: smtplib StartTLS stripping attack (rhbz#1303647)
Raise an error when STARTTLS fails (upstream patch)
- Fix for CVE-2016-5699 python: http protocol steam injection attack (rhbz#1303699)
Disabled HTTP header injections in httplib (upstream patch)
Resolves: rhbz#1346357

[2.7.5-44]
- Fix iteration over files with very long lines
Resolves: rhbz#1271760

[2.7.5-43]
- Move python.conf from /etc/tmpfiles.d/ to /usr/lib/tmpfiles.d/
Resolves: rhbz#1288426

[2.7.5-42]
- JSON decoder lone surrogates fix
Resolves: rhbz#1301017

[2.7.5-41]
- Updated PEP493 implementation
Resolves: rhbz#1315758

[2.7.5-40]
- Backport of Computed Goto dispatch
Resolves: rhbz#1289277


Related CVEs


CVE-2016-5636

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) python-2.7.5-48.0.1.el7.src.rpm4a8af613ef988ddcb6148182882c5dbbf82bb52d6e6eaffdc818a64b559a9de3ELSA-2023-6885ol7_x86_64_latest_archive
python-2.7.5-48.0.1.el7.src.rpm4a8af613ef988ddcb6148182882c5dbbf82bb52d6e6eaffdc818a64b559a9de3ELSA-2023-6885ol7_x86_64_optional_archive
python-2.7.5-48.0.1.el7.src.rpm4a8af613ef988ddcb6148182882c5dbbf82bb52d6e6eaffdc818a64b559a9de3ELSA-2023-6885ol7_x86_64_u3_base
python-2.7.5-48.0.1.el7.x86_64.rpm25bc8733f7ffa3b5d5f17e69d7e7e8c7e015e1db08421b9b70733e7212d1d006ELSA-2023-6885ol7_x86_64_latest_archive
python-2.7.5-48.0.1.el7.x86_64.rpm25bc8733f7ffa3b5d5f17e69d7e7e8c7e015e1db08421b9b70733e7212d1d006ELSA-2023-6885ol7_x86_64_u3_base
python-debug-2.7.5-48.0.1.el7.x86_64.rpmf2f2fc5d305d2a967ed770c137a000c98ac9b05c90cef15ae711e614e80558fdELSA-2023-6885ol7_x86_64_optional_archive
python-devel-2.7.5-48.0.1.el7.x86_64.rpmd295ff2d111f702669eaa31b54ed5d692427d2eec7ef05e7e353398c97a8adf7ELSA-2023-6885ol7_x86_64_latest_archive
python-devel-2.7.5-48.0.1.el7.x86_64.rpmd295ff2d111f702669eaa31b54ed5d692427d2eec7ef05e7e353398c97a8adf7ELSA-2023-6885ol7_x86_64_u3_base
python-libs-2.7.5-48.0.1.el7.i686.rpm3c5af6404ae68ff56034c78b03c68efd672310b1fd02d900596bded6b85be697ELSA-2023-6885ol7_x86_64_latest_archive
python-libs-2.7.5-48.0.1.el7.i686.rpm3c5af6404ae68ff56034c78b03c68efd672310b1fd02d900596bded6b85be697ELSA-2023-6885ol7_x86_64_u3_base
python-libs-2.7.5-48.0.1.el7.x86_64.rpmba8031a3d67a74523fa58d1b9f9c1cd514328631110ebf0850e3c8c1a2395c08ELSA-2023-6885ol7_x86_64_latest_archive
python-libs-2.7.5-48.0.1.el7.x86_64.rpmba8031a3d67a74523fa58d1b9f9c1cd514328631110ebf0850e3c8c1a2395c08ELSA-2023-6885ol7_x86_64_u3_base
python-test-2.7.5-48.0.1.el7.x86_64.rpm419a89aa96d027788fb87441a6174954b11123743082b730912231833cbb34a1ELSA-2023-6885ol7_x86_64_optional_archive
python-tools-2.7.5-48.0.1.el7.x86_64.rpmf8d0e2bd15092ee9678777d299b42295c48d32f7a27f3a66cf45ae39e176c740ELSA-2023-6885ol7_x86_64_optional_archive
tkinter-2.7.5-48.0.1.el7.x86_64.rpm6f1f37609a50205ba42b1ea3db50108e94ae192261cc98bc8cecc112337beaa7ELSA-2023-6885ol7_x86_64_optional_archive



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights