Oval Definition:oval:com.redhat.rhsa:def:20205009
Revision Date:2020-11-10Version:635
Title:RHSA-2020:5009: python security update (Moderate)
Description:Python is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries.

Security Fix(es):

  • python: infinite loop in the tarfile module via crafted TAR archive (CVE-2019-20907)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2019-20907
    RHSA-2020:5009
    Platform(s):Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • python is earlier than 0:2.7.5-90.el7
  • AND python is signed with Red Hat redhatrelease2 key
  • python-debug is earlier than 0:2.7.5-90.el7
  • AND python-debug is signed with Red Hat redhatrelease2 key
  • python-devel is earlier than 0:2.7.5-90.el7
  • AND python-devel is signed with Red Hat redhatrelease2 key
  • python-libs is earlier than 0:2.7.5-90.el7
  • AND python-libs is signed with Red Hat redhatrelease2 key
  • python-test is earlier than 0:2.7.5-90.el7
  • AND python-test is signed with Red Hat redhatrelease2 key
  • python-tools is earlier than 0:2.7.5-90.el7
  • AND python-tools is signed with Red Hat redhatrelease2 key
  • tkinter is earlier than 0:2.7.5-90.el7
  • AND tkinter is signed with Red Hat redhatrelease2 key
    • BACK