UbuntuUpdates.org

Package "python3.8"

Name: python3.8

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • IDE for Python (v3.8) using Tkinter
  • Testsuite for the Python standard library (v3.8)
  • Interactive high-level object-oriented language (pyvenv binary, version 3.8)

Latest version: 3.8.6-1ubuntu0.2
Release: groovy (20.10)
Level: updates
Repository: universe

Links



Other versions of "python3.8" in Groovy

Repository Area Version
base universe 3.8.6-1
base main 3.8.6-1
security main 3.8.6-1ubuntu0.2
security universe 3.8.6-1ubuntu0.2
updates main 3.8.6-1ubuntu0.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 3.8.6-1ubuntu0.2 2021-02-25 15:06:25 UTC

  python3.8 (3.8.6-1ubuntu0.2) groovy-security; urgency=medium

  * SECURITY UPDATE: Code execution from content received via HTTP
    - debian/patches/CVE-2020-27619-3.8.patch: no longer call eval() on
      content received via HTTP in Lib/test/multibytecodec_support.py.
    - CVE-2020-27619
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2021-3177-3.8.patch: replace snprintf with Python unicode
      formatting in ctypes param reprs in Lib/ctypes/test/test_parameters.py,
      Modules/_ctypes/callproc.c.
    - CVE-2021-3177
  * Skipping test_idle in riscv64 arch
    - debian/rules: adding test_idle to TEST_EXCLUDES in riscv64 arch due it
      hangs in build time.

 -- Leonidas Da Silva Barbosa <email address hidden> Wed, 27 Jan 2021 12:42:20 -0300

CVE-2020-27619 In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.
CVE-2021-3177 Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applic



About   -   Send Feedback to @ubuntu_updates