Stay Connected:

ELSA-2020-4433

ELSA-2020-4433 - python3 security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2020-11-10

Description


[3.6.8-31.0.1]
- Add Oracle Linux distribution in platform.py [Orabug: 20812544]

[3.6.8-31]
- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926

[3.6.8-30]
- Remove downstream 00178-dont-duplicate-flags-in-sysconfig.patch which
introduced a bug on distutils.sysconfig.get_config_var('LIBPL')
(rhbz#1851090).

[3.6.8-29]
- Fix python3-config --configdir (rhbz#1772992).

[3.6.8-28]
- Security fix for CVE-2020-8492
Resolves: rhbz#1810618

[3.6.8-27]
- Add a sentinel value on the Hmac_members table of the fips compliant hmac module
Resolves: rhbz#1800512

[3.6.8-26]
- Skip test_startup_imports from test_site if we have a .pth file in sys.path
Resolves: rhbz#1814392

[3.6.8-25]
- Security fix for CVE-2019-16935
Resolves: rhbz#1798001

[3.6.8-24]
- Build Python with -fno-semantic-interposition for better performance
- https://fedoraproject.org/wiki/Changes/PythonNoSemanticInterpositionSpeedup
- Also fix test_gdb failures with Link Time Optimizations
Resolves: rhbz#1724996


Related CVEs


CVE-2020-14422
CVE-2019-16935
CVE-2020-8492
CVE-2019-20907

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_aarch64_appstream
python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_aarch64_baseos_latest
python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_aarch64_distro_builder
python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_aarch64_u3_baseos_base
platform-python-3.6.8-31.0.1.el8.aarch64.rpm9800a68e8e42de50afb9645c6ca02eeef871ffa1ed46211a1c9d4d26ec9fb3a9-ol8_aarch64_baseos_latest
platform-python-3.6.8-31.0.1.el8.aarch64.rpm9800a68e8e42de50afb9645c6ca02eeef871ffa1ed46211a1c9d4d26ec9fb3a9-ol8_aarch64_u3_baseos_base
platform-python-debug-3.6.8-31.0.1.el8.aarch64.rpm5393c5aabbd43f7b034e917cc068520a180d799d14e4642f062d82463fecff29-ol8_aarch64_appstream
platform-python-devel-3.6.8-31.0.1.el8.aarch64.rpmd43ff809e5a1af1fcd9e8e46f7620b767022407318ca603b19333389738a490a-ol8_aarch64_appstream
python3-idle-3.6.8-31.0.1.el8.aarch64.rpm41c877e7a4607f1ca92b94e668557f45c398580d48ecc7bc203ff44aabc5d420-ol8_aarch64_appstream
python3-libs-3.6.8-31.0.1.el8.aarch64.rpm9b59abf3f79b1fb6b813fcccf3d401f81c7d1cf7a4f1d3bea71e50fb92c16500-ol8_aarch64_baseos_latest
python3-libs-3.6.8-31.0.1.el8.aarch64.rpm9b59abf3f79b1fb6b813fcccf3d401f81c7d1cf7a4f1d3bea71e50fb92c16500-ol8_aarch64_u3_baseos_base
python3-test-3.6.8-31.0.1.el8.aarch64.rpm06d9555a3ea743f5a71d21e03bb7d55472f0abc7252a49b77ef1728aa592380f-ol8_aarch64_baseos_latest
python3-test-3.6.8-31.0.1.el8.aarch64.rpm06d9555a3ea743f5a71d21e03bb7d55472f0abc7252a49b77ef1728aa592380f-ol8_aarch64_u3_baseos_base
python3-tkinter-3.6.8-31.0.1.el8.aarch64.rpm14927cf55881f74f9bb239613cd0af979c29cf87176b2f4b5176f83e55aeb562-ol8_aarch64_appstream
Oracle Linux 8 (x86_64) python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_x86_64_appstream
python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_x86_64_baseos_latest
python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_x86_64_distro_builder
python3-3.6.8-31.0.1.el8.src.rpmcc0b299573f2e0eb02cb936f4b2d6f4d3ff19a3e8529c20322824a97e882a09a-ol8_x86_64_u3_baseos_base
platform-python-3.6.8-31.0.1.el8.i686.rpm46715ec104f6a5bb03a440017d1a88df4090ec997714d356cabfcbe42656dd8f-ol8_x86_64_appstream
platform-python-3.6.8-31.0.1.el8.x86_64.rpmf70f8ba64105d3bbdd22bc3de530facac23816e8b7bfb98a7c98ffdffc2d5b14-ol8_x86_64_baseos_latest
platform-python-3.6.8-31.0.1.el8.x86_64.rpmf70f8ba64105d3bbdd22bc3de530facac23816e8b7bfb98a7c98ffdffc2d5b14-ol8_x86_64_u3_baseos_base
platform-python-debug-3.6.8-31.0.1.el8.i686.rpmf0f9732b6d9c7e03d473f035af672407e5c83c1ef0bec3f8ec9f9189e152e72d-ol8_x86_64_appstream
platform-python-debug-3.6.8-31.0.1.el8.x86_64.rpm5a9c1de9c4daa4bb351a421bab5f19b38ec9bfe151cde52cd89eb1010305de7c-ol8_x86_64_appstream
platform-python-devel-3.6.8-31.0.1.el8.i686.rpmb5c090447e942ba1d4db9140824cd26f3666e6947cd3a9973e39ac12c5927239-ol8_x86_64_appstream
platform-python-devel-3.6.8-31.0.1.el8.x86_64.rpm18e1f4e265bea4cf17de9db3b5858af89292ee152073df57d86625ed85102a07-ol8_x86_64_appstream
python3-idle-3.6.8-31.0.1.el8.i686.rpm8fa426886325fd74da72f4bb230350409153f9993f5045907c4de962f13ccc83-ol8_x86_64_appstream
python3-idle-3.6.8-31.0.1.el8.x86_64.rpmb115436c77e037716fb021612a3dff8e636e8361153f3bc34fff88fbecd5a92a-ol8_x86_64_appstream
python3-libs-3.6.8-31.0.1.el8.i686.rpma7f7d948451ffd3b96bcbedae958da755f9b17800a34b9b4a16fd22aab6b5d54-ol8_x86_64_baseos_latest
python3-libs-3.6.8-31.0.1.el8.i686.rpma7f7d948451ffd3b96bcbedae958da755f9b17800a34b9b4a16fd22aab6b5d54-ol8_x86_64_u3_baseos_base
python3-libs-3.6.8-31.0.1.el8.x86_64.rpm2e723f784f41dbf42e7c839830b91e5762c060a26262db7df887919329975cd7-ol8_x86_64_baseos_latest
python3-libs-3.6.8-31.0.1.el8.x86_64.rpm2e723f784f41dbf42e7c839830b91e5762c060a26262db7df887919329975cd7-ol8_x86_64_u3_baseos_base
python3-test-3.6.8-31.0.1.el8.i686.rpmd6780f8c7c54c786fede606f41e254965b70e4029a6b5ed1bf21ecfde798b7b7-ol8_x86_64_appstream
python3-test-3.6.8-31.0.1.el8.x86_64.rpm8fc996279efdf6990ab950e9d535e83beac207e771bc988c240263a0f77a8085-ol8_x86_64_baseos_latest
python3-test-3.6.8-31.0.1.el8.x86_64.rpm8fc996279efdf6990ab950e9d535e83beac207e771bc988c240263a0f77a8085-ol8_x86_64_u3_baseos_base
python3-tkinter-3.6.8-31.0.1.el8.i686.rpm948b1bf2fb701b3e61ad3d95205770df67ddd5df7928dece2c3e61b963226eaa-ol8_x86_64_appstream
python3-tkinter-3.6.8-31.0.1.el8.x86_64.rpm28a88cd60f43719454023329e744e10c0c4d564a787fe384b15ce97186655a45-ol8_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights