On Apr 27, 2012, at 07:02 PM, Scott Kitterman wrote: >OK. I added a task on ubuntu-release-notes. Would you please draft >something up?
Python 2.7.3 includes a fix for a security vulnerability affecting Python's dict and set implementations. Carefully crafted, untrusted input could lead to extremely long computation times and denials of service. Although disabled by default, vulnerable applications such as CGI scripts can explicitly enable "hash randomization" to prevent this exploit. Due to implementation details of this fix, virtualenvs created with older 2.7.x releases may not work with 2.7.3. Specifically, the os module may not appear to have a urandom function. This problem can be solved by recreating the broken virtualenvs with the newer Python 2.7.3 version. See http://bugs.python.org/issue13703 for full details. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/954595 Title: ImportError: cannot import name urandom from os To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-release-notes/+bug/954595/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
