Publishing details
Changelog
python2.7 (2.7.17-1~18.04ubuntu1.7) bionic-security; urgency=medium
* SECURITY UPDATE: Expose sensitive information
- debian/patches/CVE-2021-4189.patch: alters ftplib.FTP class
behavior to not trust the IPv4 address sent from the remote
server when setting up a passive data channel in
resposne in Lib/ftplib.py, Lib/test/test_ftplib.py.
- CVE-2021-4189
* SECURITY UPDATE: Injection Attack
- debian/patches/CVE-2022-0391.patch: sanitize urls in urlparse
when it containing ASCII newline and tabs in
Lib/test/test_urlparse.py,
Lib/urlparse.py.
- CVE-2022-0391
-- Leonidas Da Silva Barbosa <email address hidden> Fri, 18 Mar 2022 10:21:42 -0300
Builds
Package files