========================================================================== Ubuntu Security Notice USN-3496-1 November 28, 2017
python2.7 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 17.04 - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Python could be made to run arbitrary code. Software Description: - python2.7: An interactive high-level object-oriented language Details: It was discovered that Python incorrectly handled decoding certain strings. An attacker could possibly use this issue to execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 17.04: python2.7 2.7.13-2ubuntu0.1 python2.7-minimal 2.7.13-2ubuntu0.1 Ubuntu 16.04 LTS: python2.7 2.7.12-1ubuntu0~16.04.2 python2.7-minimal 2.7.12-1ubuntu0~16.04.2 Ubuntu 14.04 LTS: python2.7 2.7.6-8ubuntu0.4 python2.7-minimal 2.7.6-8ubuntu0.4 In general, a standard system update will make all the necessary changes. References: https://www.ubuntu.com/usn/usn-3496-1 CVE-2017-1000158 Package Information: https://launchpad.net/ubuntu/+source/python2.7/2.7.13-2ubuntu0.1 https://launchpad.net/ubuntu/+source/python2.7/2.7.12-1ubuntu0~16.04. 2 https://launchpad.net/ubuntu/+source/python2.7/2.7.6-8ubuntu0.4
signature.asc
Description: This is a digitally signed message part
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce