-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-9652 2010-06-07 20:43:18 --------------------------------------------------------------------------------
Name : python Product : Fedora 13 Version : 2.6.4 Release : 27.fc13 URL : http://www.python.org/ Summary : An interpreted, interactive, object-oriented programming language Description : Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems (X11, Motif, Tk, Mac and MFC). Programmers can write new built-in modules for Python in C or C++. Python can be used as an extension language for applications that need a programmable interface. This package contains most of the standard Python modules, as well as modules for interfacing to the Tix widget set for Tk and RPM. Note that documentation for Python is provided in the python-docs package. -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 4 2010 David Malcolm <[email protected]> - 2.6.4-27 - ensure that the compiler is invoked with "-fwrapv" (rhbz#594819) - CVE-2010-1634: fix various integer overflow checks in the audioop module (patch 113) - CVE-2010-2089: further checks within the audioop module (patch 114) - CVE-2008-5983: the new PySys_SetArgvEx entry point from r81399 (patch 115) * Mon Apr 26 2010 Dennis Gilmore <[email protected]> - 2.6.4-26 - disable --with-valgrind on sparc arches -------------------------------------------------------------------------------- References: [ 1 ] Bug #590690 - CVE-2010-1634 python: audioop: incorrect integer overflow checks https://bugzilla.redhat.com/show_bug.cgi?id=590690 [ 2 ] Bug #598197 - CVE-2010-2089 Python: Memory corruption in audioop module https://bugzilla.redhat.com/show_bug.cgi?id=598197 [ 3 ] Bug #482814 - CVE-2008-5983 python: untrusted python modules search path https://bugzilla.redhat.com/show_bug.cgi?id=482814 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update python' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
