USN-4973-2: Python vulnerability
4 October 2021
Python could allow unintended access to network services.
- python3.8 - An interactive high-level object-oriented language
USN-4973-1 fixed this vulnerability previously, but it was re-introduced
in python3.8 in focal because of the SRU in LP: #1928057. This update fixes
Original advisory details:
It was discovered that the Python stdlib ipaddress API incorrectly handled
octal strings. A remote attacker could possibly use this issue to perform a
wide variety of attacks, including bypassing certain access restrictions.
- USN-4973-1: libpython3.8-dev, python3.8-dev, libpython3.8-testsuite, python3.8-examples, python3.8-venv, python3.8, libpython3.8-minimal, idle-python3.8, python3.8-minimal, libpython3.8-stdlib, libpython3.8, python3.8-doc