USN-5083-1: Python vulnerabilities
16 September 2021
Several security issues were fixed in Python.
Releases
Packages
Details
It was discovered that Python incorrectly handled certain RFCs.
An attacker could possibly use this issue to cause a denial of service.
This issue only affected Ubuntu 16.04 ESM. (CVE-2021-3733)
It was discovered that Python incorrectly handled certain
server responses. An attacker could possibly use this issue to
cause a denial of service. (CVE-2021-3737)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04
-
python3.5
-
3.5.2-2ubuntu0~16.04.13+esm1
Available with UA Infra or UA Desktop
-
python3.5-minimal
-
3.5.2-2ubuntu0~16.04.13+esm1
Available with UA Infra or UA Desktop
Ubuntu 14.04
-
python3.4
-
3.4.3-1ubuntu1~14.04.7+esm11
Available with UA Infra or UA Desktop
-
python3.4-minimal
-
3.4.3-1ubuntu1~14.04.7+esm11
Available with UA Infra or UA Desktop
In general, a standard system update will make all the necessary changes.
References
Related notices
- USN-5199-1: python3.6-venv, libpython3.6-testsuite, libpython3.6-minimal, python3.6-dev, python3.6, python3.6-examples, python3.6-doc, python3.6-minimal, libpython3.6-stdlib, idle-python3.6, libpython3.6, libpython3.6-dev
- USN-5200-1: python3.7-dev, python3.8-venv, python3.7-venv, python3.7-doc, libpython3.7, python3.8-examples, python3.7-examples, libpython3.8-dev, libpython3.8-testsuite, python3.8-dev, libpython3.7-minimal, libpython3.8-stdlib, libpython3.7-stdlib, python3.7-minimal, libpython3.7-dev, idle-python3.7, libpython3.8, python3.8, python3.8-minimal, python3.7, idle-python3.8, libpython3.8-minimal, libpython3.7-testsuite
- USN-5201-1: python3.9-dev, python3.8-venv, python3.9-full, libpython3.9, libpython3.9-stdlib, python3.8-examples, libpython3.8-dev, libpython3.9-testsuite, libpython3.8-testsuite, python3.8-dev, libpython3.8-stdlib, python3.9-minimal, libpython3.9-dev, python3.8-doc, python3.9-examples, python3.9-doc, python3.9, libpython3.8, libpython3.9-minimal, python3.8, python3.8-minimal, python3.8-full, idle-python3.8, libpython3.8-minimal, python3.9-venv, idle-python3.9