AlmaLinux 2324 Published by

A python38:3.8 and python38-devel:3.8 security update has been released for AlmaLinux.



ALSA-2022:1764 Moderate: python38:3.8 and python38-devel:3.8 security update


Type:
security

Severity:
moderate

Release date:
2022-05-10

Description
The following packages have been upgraded to a later upstream version: python38 (3.8), python38-devel (3.8). (BZ#1997680, BZ#1997860)
Security Fix(es):
* python: urllib: Regular expression DoS in AbstractBasicAuthHandler (CVE-2021-3733)
* python-lxml: HTML Cleaner allows crafted and SVG embedded scripts to pass through (CVE-2021-43818)
* python: urllib.parse does not sanitize URLs containing ASCII newline and tabs (CVE-2022-0391)
* python: urllib: HTTP client possible infinite loop on a 100 Continue response (CVE-2021-3737)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:
CVE-2021-3733
CVE-2021-3737
CVE-2021-43818
CVE-2022-0391
ALSA-2022-1764

Updates packages:
python38-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-Cython-0.29.14-4.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-PyMySQL-0.10.1-1.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-asn1crypto-1.2.0-3.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-babel-2.7.0-11.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-cffi-1.13.2-3.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-chardet-3.0.4-19.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-cryptography-2.8-3.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-debug-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-devel-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-idle-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-idna-2.8-6.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-jinja2-2.10.3-5.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-libs-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-lxml-4.4.1-7.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-markupsafe-1.1.1-6.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-mod_wsgi-4.6.8-3.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-numpy-1.17.3-6.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-numpy-doc-1.17.3-6.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-numpy-f2py-1.17.3-6.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-pip-19.3.1-5.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-pip-wheel-19.3.1-5.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-ply-3.11-10.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-psutil-5.6.4-4.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-psycopg2-2.8.4-4.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-psycopg2-doc-2.8.4-4.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-psycopg2-tests-2.8.4-4.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-pycparser-2.19-3.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-pysocks-1.7.1-4.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-pytz-2019.3-3.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-pyyaml-5.4.1-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-requests-2.22.0-9.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-rpm-macros-3.8.12-1.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-scipy-1.3.1-4.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-setuptools-41.6.0-5.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-setuptools-wheel-41.6.0-5.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-six-1.12.0-10.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-test-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-tkinter-3.8.12-1.module_el8.6.0+2778+cd494b30.x86_64.rpm
python38-urllib3-1.25.7-5.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-wheel-0.33.6-6.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-wheel-wheel-0.33.6-6.module_el8.6.0+2778+cd494b30.noarch.rpm
python38-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-Cython-0.29.14-4.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-cffi-1.13.2-3.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-cryptography-2.8-3.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-debug-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-devel-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-idle-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-libs-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-lxml-4.4.1-7.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-markupsafe-1.1.1-6.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-mod_wsgi-4.6.8-3.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-numpy-1.17.3-6.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-numpy-f2py-1.17.3-6.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-psutil-5.6.4-4.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-psycopg2-2.8.4-4.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-psycopg2-doc-2.8.4-4.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-psycopg2-tests-2.8.4-4.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-pyyaml-5.4.1-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-scipy-1.3.1-4.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-test-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-tkinter-3.8.12-1.module_el8.6.0+2778+cd494b30.aarch64.rpm
python38-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-Cython-0.29.14-4.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-cffi-1.13.2-3.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-cryptography-2.8-3.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-debug-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-devel-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-idle-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-libs-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-lxml-4.4.1-7.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-markupsafe-1.1.1-6.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-mod_wsgi-4.6.8-3.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-numpy-1.17.3-6.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-numpy-f2py-1.17.3-6.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-psutil-5.6.4-4.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-psycopg2-2.8.4-4.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-psycopg2-doc-2.8.4-4.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-psycopg2-tests-2.8.4-4.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-pyyaml-5.4.1-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-scipy-1.3.1-4.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-test-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm
python38-tkinter-3.8.12-1.module_el8.6.0+2778+cd494b30.ppc64le.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2022:1764 Moderate: python38:3.8 and python38-devel:3.8 security update