Ubuntu
python2.7 package

CVE-2021-3177 in python2.7

Bug #1916117 reported by Saif Hakim
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
python2.7 (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

See: https://security-tracker.debian.org/tracker/CVE-2021-3177

Python 3.x was affected and fixed upstream by the Python team.
Python 2.x is also affected but because it has reached its EOL, a backport was not released.

CVE References

Revision history for this message
Saif Hakim (saifelse) wrote :

Posted a merge request: https://salsa.debian.org/cpython-team/python2/-/merge_requests/3

Saif Hakim (saifelse)
summary: - CVE-2021-3177
+ CVE-2021-3177 in python2.7
Revision history for this message
Dimitri John Ledkov (xnox) wrote :

doko merged above pull request already.

information type: Public → Public Security
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package python2.7 - 2.7.18-4

---------------
python2.7 (2.7.18-4) unstable; urgency=medium

  * Update the patch for issue #42938 (Marc Deslauriers). Closes: #983516.

 -- Matthias Klose <email address hidden> Fri, 26 Feb 2021 07:17:59 +0100

Changed in python2.7 (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Related questions

Remote bug watches

Bug watches keep track of this bug in other bug trackers.