Oracle Linux 6279 Published by

A python3 security update has been released for Oracle Linux 7.



ELSA-2023-6823 Important: Oracle Linux 7 python3 security update


Oracle Linux Security Advisory ELSA-2023-6823

http://linux.oracle.com/errata/ELSA-2023-6823.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-3.6.8-21.0.1.el7_9.i686.rpm
python3-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-debug-3.6.8-21.0.1.el7_9.i686.rpm
python3-debug-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-devel-3.6.8-21.0.1.el7_9.i686.rpm
python3-devel-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-idle-3.6.8-21.0.1.el7_9.i686.rpm
python3-idle-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-libs-3.6.8-21.0.1.el7_9.i686.rpm
python3-libs-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-test-3.6.8-21.0.1.el7_9.i686.rpm
python3-test-3.6.8-21.0.1.el7_9.x86_64.rpm
python3-tkinter-3.6.8-21.0.1.el7_9.i686.rpm
python3-tkinter-3.6.8-21.0.1.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//python3-3.6.8-21.0.1.el7_9.src.rpm

Related CVEs:

CVE-2023-40217

Description of changes:

[3.6.8-21.0.1]
- Remove the "getfile" feature of pydoc [Orabug: 33182027][CVE-2021-3426]
- Fix buffer overflow in PyCArg_repr [Orabug: 32551171][CVE-2021-3177]
- Add Oracle Linux distribution in platform.py [Orabug: 20812544]

[3.6.8-21]
- Test fixups for CVE-2023-40217
Resolves: RHEL-3139

[3.6.8-20]
- Security fix for CVE-2023-40217
Resolves: RHEL-3139