Sicherheit: Überschreiben von Dateien in python-impacket
Aktuelle Meldungen Distributionen
Name: Überschreiben von Dateien in python-impacket
ID: FEDORA-2021-52dfb60726
Distribution: Fedora
Plattformen: Fedora 34
Datum: So, 16. Mai 2021, 09:43
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31800
Applikationen: python-impacket


Fedora Update Notification
2021-05-16 02:01:05.994424

Name : python-impacket
Product : Fedora 34
Version : 0.9.22
Release : 3.fc34
URL : https://github.com/SecureAuthCorp/impacket
Summary : Collection of Python classes providing access to network packets
Description :

Impacket is a collection of Python classes focused on providing access to
network packets. Impacket allows Python developers to craft and decode network
packets in simple and consistent manner. It is highly effective when used in
conjunction with a packet capture utility or package such as Pcapy. Packets
can be constructed from scratch, as well as parsed from raw data. Furthermore,
the object oriented API makes it simple to work with deep protocol hierarchies.

Update Information:

Security fix for CVE-2021-31800 - #1957428, #1957427 - fix path traversal in
smbserver.py ---- Updated to new upstream release 0.9.22

* Fri May 7 2021 Michal Ambroz <rebus _AT seznam.cz> - 0.9.22-3
- fix CVE-2021-31800 - #1957428, #1957427 during 0.9.22 lifecycle
* Sun May 2 2021 Michal Ambroz <rebus _AT seznam.cz> - 0.9.22-2
- fix dependencies for EPEL7 as of #1893859
* Wed Apr 14 2021 Michal Ambroz <rebus _AT seznam.cz> - 0.9.22-1
- Updated to new upstream release 0.9.22
- modernize specfile with bconds
- upstream patch for python39 compatibility (needed for FC34+)
* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> -
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[ 1 ] Bug #1957426 - CVE-2021-31800 python-impacket: Multiple path traversal
vulnerabilities in smbserver.py

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-52dfb60726' at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
Pro-Linux @Facebook
Neue Nachrichten