drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in Eventlet
| Name: |
Denial of Service in Eventlet |
|
| ID: |
USN-4956-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 20.04 LTS, Ubuntu 20.10, Ubuntu 21.04 |
|
| Datum: |
Mo, 17. Mai 2021, 22:31 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21419 |
|
| Applikationen: |
Eventlet |
|
Originalnachricht |
--===============5663273532880027988==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="nFreZHaLTZJo0R7j"
Content-Disposition: inline
--nFreZHaLTZJo0R7j
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-4956-1
May 17, 2021
python-eventlet vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 21.04
- Ubuntu 20.10
- Ubuntu 20.04 LTS
Summary:
Eventlet could be made denial of service if it received a specially
crafted request.
Software Description:
- python-eventlet: concurrent networking library
Details:
It was discovered that Eventlet incorrectly handled certain requests.
An attacker could possibly use this issue to cause a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 21.04:
python3-eventlet 0.30.0-0ubuntu1.1
Ubuntu 20.10:
python3-eventlet 0.26.1-0ubuntu1.1
Ubuntu 20.04 LTS:
python3-eventlet 0.25.1-2ubuntu1.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-4956-1
CVE-2021-21419
Package Information:
https://launchpad.net/ubuntu/+source/python-eventlet/0.30.0-0ubuntu1.1
https://launchpad.net/ubuntu/+source/python-eventlet/0.26.1-0ubuntu1.1
https://launchpad.net/ubuntu/+source/python-eventlet/0.25.1-2ubuntu1.1
--nFreZHaLTZJo0R7j
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=JBCv
-----END PGP SIGNATURE-----
--nFreZHaLTZJo0R7j--
--===============5663273532880027988==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|
