|
|
Subscribe / Log in / New account

Ubuntu alert USN-5930-1 (python3.7)



From:
              Amir Naseredini <amir.naseredini@canonical.com>


To:
              ubuntu-security-announce@lists.ubuntu.com


Subject:
              [USN-5930-1] Python vulnerability


Date:
              Tue, 07 Mar 2023 14:21:04 +0000


Message-ID:
              <1aa33db9-1b15-9080-ccde-05fd57bcd00b@canonical.com>


==========================================================================
Ubuntu Security Notice USN-5930-1
March 07, 2023

python3.7 vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in Python.

Software Description:
- python3.7: An interactive high-level object-oriented language

Details:

It was discovered that Python incorrectly handled certain inputs. If a
user or an automated system were tricked into running a specially
crafted input, a remote attacker could possibly use this issue to execute
arbitrary code. (CVE-2022-37454)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
   python3.7                       3.7.5-2ubuntu1~18.04.2+esm2
   python3.7-minimal               3.7.5-2ubuntu1~18.04.2+esm2

In general, a standard system update will make all the necessary changes.

References:
   https://ubuntu.com/security/notices/USN-5930-1
   CVE-2022-37454

Package Information:
 
https://launchpad.net/ubuntu/+source/python3.7/3.7.5-2ubu...
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds