ELSA-2023-6823 Important: Oracle Linux 7 python3 security update
Oracle Linux Security Advisory ELSA-2023-6823
http://linux.oracle.com/errata/ELSA-2023-6823.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
python3-3.6.8-21.0.1.el7_9.i686.rpm
python3-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-debug-3.6.8-21.0.1.el7_9.i686.rpm
python3-debug-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-devel-3.6.8-21.0.1.el7_9.i686.rpm
python3-devel-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-idle-3.6.8-21.0.1.el7_9.i686.rpm
python3-idle-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-libs-3.6.8-21.0.1.el7_9.i686.rpm
python3-libs-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-test-3.6.8-21.0.1.el7_9.i686.rpm
python3-test-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-tkinter-3.6.8-21.0.1.el7_9.i686.rpm
python3-tkinter-3.6.8-21.0.1.el7_9.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//python3-3.6.8-21.0.1.el7_9.src.rpm
Related CVEs:
CVE-2023-40217
Description of changes:
[3.6.8-21.0.1]
- Remove the "getfile" feature of pydoc [Orabug: 33182027][CVE-2021-3426]
- Fix buffer overflow in PyCArg_repr [Orabug: 32551171][CVE-2021-3177]
- Add Oracle Linux distribution in platform.py [Orabug: 20812544]
[3.6.8-21]
- Test fixups for CVE-2023-40217
Resolves: RHEL-3139
[3.6.8-20]
- Security fix for CVE-2023-40217
Resolves: RHEL-3139
A python3 security update has been released for Oracle Linux 7.