Login
Newsletter
Werbung

Sicherheit: Zahlenüberläufe in python
Aktuelle Meldungen Distributionen
Name: Zahlenüberläufe in python
ID: MDVSA-2008:186
Distribution: Mandriva
Plattformen: Mandriva Corporate 3.0, Mandriva Multi Network Firewall 2.0
Datum: Fr, 5. September 2008, 00:35
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3143
Applikationen: Python

Originalnachricht

This is a multi-part message in MIME format...

------------=_1220567740-11275-8839


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2008:186
http://www.mandriva.com/security/
_______________________________________________________________________

Package : python
Date : September 4, 2008
Affected: Corporate 3.0, Multi Network Firewall 2.0
_______________________________________________________________________

Problem Description:

Multiple integer overflows were reported by the Google Security Team
that had been fixed in Python 2.5.2 (CVE-2008-3143).

The Python packages on Corporate 3 have been updated to the latest
version 2.3.7, which corrects this issue.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3143
_______________________________________________________________________

Updated Packages:

Corporate 3.0:
34e780fd42571387982688486bcfdad6
corporate/3.0/i586/libpython2.3-2.3.7-0.1.C30mdk.i586.rpm
9b0043b0cae2f92eb39a3cb48e35a50e
corporate/3.0/i586/libpython2.3-devel-2.3.7-0.1.C30mdk.i586.rpm
27ec7af68b8ac69feef9d2e9c3f59d65
corporate/3.0/i586/python-2.3.7-0.1.C30mdk.i586.rpm
16a7791f08cf7d89a5780b8c25f4d65d
corporate/3.0/i586/python-base-2.3.7-0.1.C30mdk.i586.rpm
2b2e39c9db5794abdd895220a38d8cd8
corporate/3.0/i586/python-docs-2.3.7-0.1.C30mdk.i586.rpm
a631b1fd887fded582437d6799fffa5d
corporate/3.0/i586/tkinter-2.3.7-0.1.C30mdk.i586.rpm
a867d0a919c3fd0d9607d4cd64d89d3c
corporate/3.0/SRPMS/python-2.3.7-0.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
3bea043cedbf23095e6aae6f4eacbe04
corporate/3.0/x86_64/lib64python2.3-2.3.7-0.1.C30mdk.x86_64.rpm
9d576933f0699d5b7f0fc1bb78fd7514
corporate/3.0/x86_64/lib64python2.3-devel-2.3.7-0.1.C30mdk.x86_64.rpm
e8a8494fcd526c0f3433dc03cb35672b
corporate/3.0/x86_64/python-2.3.7-0.1.C30mdk.x86_64.rpm
7bf8423818a1e1221b51f28e05e3c616
corporate/3.0/x86_64/python-base-2.3.7-0.1.C30mdk.x86_64.rpm
79d213fe64ac42cf95d4c4072c813cae
corporate/3.0/x86_64/python-docs-2.3.7-0.1.C30mdk.x86_64.rpm
437b615287bf5022edb1700f6d8b8790
corporate/3.0/x86_64/tkinter-2.3.7-0.1.C30mdk.x86_64.rpm
a867d0a919c3fd0d9607d4cd64d89d3c
corporate/3.0/SRPMS/python-2.3.7-0.1.C30mdk.src.rpm

Multi Network Firewall 2.0:
34e780fd42571387982688486bcfdad6
mnf/2.0/i586/libpython2.3-2.3.7-0.1.C30mdk.i586.rpm
27ec7af68b8ac69feef9d2e9c3f59d65
mnf/2.0/i586/python-2.3.7-0.1.C30mdk.i586.rpm
16a7791f08cf7d89a5780b8c25f4d65d
mnf/2.0/i586/python-base-2.3.7-0.1.C30mdk.i586.rpm
a867d0a919c3fd0d9607d4cd64d89d3c
mnf/2.0/SRPMS/python-2.3.7-0.1.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFIwDfHmqjQ0CJFipgRAnpYAKDN/AxpERzTga5Uptum3VNeW2kRJwCcCWZv
stvEAyS71HncWdMnJdg+IUQ=
=XDEP
-----END PGP SIGNATURE-----


------------=_1220567740-11275-8839
Content-Type: text/plain; name="message-footer.txt"
Content-Disposition: inline; filename="message-footer.txt"
Content-Transfer-Encoding: 8bit

To unsubscribe, send a email to sympa@mandrivalinux.org
with this subject : unsubscribe security-announce
_______________________________________________________
Want to buy your Pack or Services from Mandriva?
Go to http://www.mandrivastore.com
Join the Club : http://www.mandrivaclub.com
_______________________________________________________

------------=_1220567740-11275-8839--
Pro-Linux
Unterstützer werden
Neue Nachrichten
Werbung