RHSA-2022:6766MediumCVSS 7.6
Red Hat Security Advisory: rh-python38-python security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2015-20107 — python: mailcap: findmatch() function does not sanitize the second argument CVE-2020-10735 — python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS CVE-2021-28861 — python: open redirection vulnerability in lib/http/server.py may lead to information disclosure
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2022:6766
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1834423
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2075390
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2120642
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6766.json