[USN-5519-1] Python vulnerability


========================================================================== Ubuntu Security Notice USN-5519-1 July 14, 2022
python2.7, python3.10, python3.4, python3.5, python3.6, python3.8, python3.9 vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 22.04 LTS – Ubuntu 21.10 – Ubuntu 20.04 LTS – Ubuntu 18.04 LTS – Ubuntu 16.04 ESM – Ubuntu 14.04 ESM
Summary:
Python could be made to run arbitrary code if it received a specially crafted input.
Software Description: – python2.7: An interactive high-level object-oriented language – python3.10: Interactive high-level object-oriented language (version 3.10) – python3.9: Interactive high-level object-oriented language (version 3.9) – python3.8: An interactive high-level object-oriented language – python3.6: An interactive high-level object-oriented language – python3.5: An interactive high-level object-oriented language – python3.4: An interactive high-level object-oriented language
Details:
It was discovered that Python incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04 LTS: python2.7 2.7.18-13ubuntu1.1 python2.7-minimal 2.7.18-13ubuntu1.1 python3.10 3.10.4-3ubuntu0.1 python3.10-minimal 3.10.4-3ubuntu0.1
Ubuntu 21.10: python2.7 2.7.18-8ubuntu0.2 python2.7-minimal 2.7.18-8ubuntu0.2 python3.9 3.9.7-2ubuntu0.1 python3.9-minimal 3.9.7-2ubuntu0.1
Ubuntu 20.04 LTS: python2.7 2.7.18-1~20.04.3 python2.7-minimal 2.7.18-1~20.04.3 python3.8 3.8.10-0ubuntu1~20.04.5 python3.8-minimal 3.8.10-0ubuntu1~20.04.5
Ubuntu 18.04 LTS: python2.7 2.7.17-1~18.04ubuntu1.8 python2.7-minimal 2.7.17-1~18.04ubuntu1.8 python3.6 3.6.9-1~18.04ubuntu1.8 python3.6-minimal 3.6.9-1~18.04ubuntu1.8
Ubuntu 16.04 ESM: python2.7 2.7.12-1ubuntu0~16.04.18+esm2 python2.7-minimal 2.7.12-1ubuntu0~16.04.18+esm2 python3.5 3.5.2-2ubuntu0~16.04.13+esm3 python3.5-minimal 3.5.2-2ubuntu0~16.04.13+esm3
Ubuntu 14.04 ESM: python2.7 2.7.6-8ubuntu0.6+esm11 python2.7-minimal 2.7.6-8ubuntu0.6+esm11 python3.4 3.4.3-1ubuntu1~14.04.7+esm13 python3.4-minimal 3.4.3-1ubuntu1~14.04.7+esm13
In general, a standard system update will make all the necessary changes.
References: ubuntu.com/security/notices/USN-5519-1 CVE-2015-20107
Package Information: launchpad.net/ubuntu/+source/python2.7/2.7.18-13ubuntu1.1 launchpad.net/ubuntu/+source/python3.10/3.10.4-3ubuntu0.1 launchpad.net/ubuntu/+source/python2.7/2.7.18-8ubuntu0.2 launchpad.net/ubuntu/+source/python3.9/3.9.7-2ubuntu0.1 launchpad.net/ubuntu/+source/python2.7/2.7.18-1~20.04.3 launchpad.net/ubuntu/+source/python3.8/3.8.10-0ubuntu1~20.04.5 launchpad.net/ubuntu/+source/python2.7/2.7.17-1~18.04ubuntu1.8 launchpad.net/ubuntu/+source/python3.6/3.6.9-1~18.04ubuntu1.8