Publishing details

Removed from disk on 2016-11-24.
Removal requested on 2016-11-23.
Superseded on 2016-11-22 by python2.7 - 2.7.3-0ubuntu3.9
Published on 2015-06-25
Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot

Changelog

python2.7 (2.7.3-0ubuntu3.8) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service in multiple servers
    - debian/patches/CVE-2013-1752-ftplib.patch: limit amount of data read
      in Lib/ftplib.py, added test to Lib/test/test_ftplib.py.
    - debian/patches/CVE-2013-1752-httplib-1.patch: limit long lines in
      Lib/httplib.py.
    - debian/patches/CVE-2013-1752-httplib-2.patch: limit amount of headers
      in Lib/httplib.py, added test to Lib/test/test_httplib.py.
    - debian/patches/CVE-2013-1752-imaplib-1.patch: limit line length in
      Lib/imaplib.py, added test to Lib/test/test_imaplib.py.
    - debian/patches/CVE-2013-1752-imaplib-2.patch: disable broken test in
      Lib/test/test_imaplib.py.
    - debian/patches/CVE-2013-1752-nntplib.patch: limit line length in
      Lib/nntplib.py, added test to Lib/test/test_nntplib.py.
    - debian/patches/CVE-2013-1752-poplib.patch: limit maximum line length
      in Lib/poplib.py, added test to Lib/test/test_poplib.py.
    - debian/patches/CVE-2013-1752-smtplib.patch: limit amount read from
      the network in Lib/smtplib.py, added test to
      Lib/test/test_smtplib.py.
    - CVE-2013-1752
  * SECURITY UPDATE: denial of service via xmlrpc gzip-compressed
    HTTP bodies
    - debian/patches/CVE-2013-1753.patch: add default limit in
      Lib/xmlrpclib.py, added test to Lib/test/test_xmlrpc.py.
    - CVE-2013-1753
  * SECURITY UPDATE: arbitrary memory read via idx argument
    - debian/patches/CVE-2014-4616.patch: reject negative idx values in
      Modules/_json.c, added test to Lib/json/tests/test_decode.py.
    - CVE-2014-4616
  * SECURITY UPDATE: code execution or file disclosure via CGIHTTPServer
    - debian/patches/CVE-2014-4650.patch: url unquote path in
      Lib/CGIHTTPServer.py, added test to Lib/test/test_httpservers.py.
    - CVE-2014-4650
  * SECURITY UPDATE: information disclosure via buffer function
    - debian/patches/CVE-2014-7185.patch: avoid overflow in
      Objects/bufferobject.c, added test to Lib/test/test_buffer.py.
    - CVE-2014-7185

 -- Marc Deslauriers <email address hidden>  Mon, 22 Jun 2015 10:55:41 -0400

Available diffs

diff from 2.7.3-0ubuntu3.6 (in Ubuntu) to 2.7.3-0ubuntu3.8 (9.4 KiB)
diff from 2.7.3-0ubuntu3.5 to 2.7.3-0ubuntu3.8 (9.8 KiB)
diff from 2.7.3-0ubuntu3.7 to 2.7.3-0ubuntu3.8 (1.2 KiB)

Builds

Package files

idle-python2.7_2.7.3-0ubuntu3.8_all.deb (246.0 KiB)
libpython2.7-dbgsym_2.7.3-0ubuntu3.8_amd64.ddeb (176.4 KiB)
libpython2.7-dbgsym_2.7.3-0ubuntu3.8_armel.ddeb (202.9 KiB)
libpython2.7-dbgsym_2.7.3-0ubuntu3.8_armhf.ddeb (202.0 KiB)
libpython2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb (178.3 KiB)
libpython2.7-dbgsym_2.7.3-0ubuntu3.8_powerpc.ddeb (1.1 MiB)
libpython2.7_2.7.3-0ubuntu3.8_amd64.deb (1.1 MiB)
libpython2.7_2.7.3-0ubuntu3.8_armel.deb (986.0 KiB)
libpython2.7_2.7.3-0ubuntu3.8_armhf.deb (985.3 KiB)
libpython2.7_2.7.3-0ubuntu3.8_i386.deb (1.1 MiB)
libpython2.7_2.7.3-0ubuntu3.8_powerpc.deb (1.1 MiB)
python2.7-dbg_2.7.3-0ubuntu3.8_amd64.deb (9.1 MiB)
python2.7-dbg_2.7.3-0ubuntu3.8_armel.deb (8.9 MiB)
python2.7-dbg_2.7.3-0ubuntu3.8_armhf.deb (9.0 MiB)
python2.7-dbg_2.7.3-0ubuntu3.8_i386.deb (8.6 MiB)
python2.7-dbg_2.7.3-0ubuntu3.8_powerpc.deb (13.3 MiB)
python2.7-dbgsym_2.7.3-0ubuntu3.8_amd64.ddeb (110.0 KiB)
python2.7-dbgsym_2.7.3-0ubuntu3.8_armel.ddeb (135.1 KiB)
python2.7-dbgsym_2.7.3-0ubuntu3.8_armhf.ddeb (135.1 KiB)
python2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb (111.8 KiB)
python2.7-dbgsym_2.7.3-0ubuntu3.8_powerpc.ddeb (714.7 KiB)
python2.7-dev_2.7.3-0ubuntu3.8_amd64.deb (28.2 MiB)
python2.7-dev_2.7.3-0ubuntu3.8_armel.deb (27.1 MiB)
python2.7-dev_2.7.3-0ubuntu3.8_armhf.deb (27.1 MiB)
python2.7-dev_2.7.3-0ubuntu3.8_i386.deb (27.9 MiB)
python2.7-dev_2.7.3-0ubuntu3.8_powerpc.deb (3.6 MiB)
python2.7-doc_2.7.3-0ubuntu3.8_all.deb (5.9 MiB)
python2.7-examples_2.7.3-0ubuntu3.8_all.deb (667.1 KiB)
python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_amd64.ddeb (192.9 KiB)
python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_armel.ddeb (221.2 KiB)
python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_armhf.ddeb (221.8 KiB)
python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb (188.4 KiB)
python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_powerpc.ddeb (1.1 MiB)
python2.7-minimal_2.7.3-0ubuntu3.8_amd64.deb (1.7 MiB)
python2.7-minimal_2.7.3-0ubuntu3.8_armel.deb (1.5 MiB)
python2.7-minimal_2.7.3-0ubuntu3.8_armhf.deb (1.5 MiB)
python2.7-minimal_2.7.3-0ubuntu3.8_i386.deb (1.6 MiB)
python2.7-minimal_2.7.3-0ubuntu3.8_powerpc.deb (1.6 MiB)
python2.7_2.7.3-0ubuntu3.8.diff.gz (265.0 KiB)
python2.7_2.7.3-0ubuntu3.8.dsc (2.7 KiB)
python2.7_2.7.3-0ubuntu3.8_amd64.deb (2.6 MiB)
python2.7_2.7.3-0ubuntu3.8_armel.deb (2.5 MiB)
python2.7_2.7.3-0ubuntu3.8_armhf.deb (2.5 MiB)
python2.7_2.7.3-0ubuntu3.8_i386.deb (2.5 MiB)
python2.7_2.7.3-0ubuntu3.8_powerpc.deb (2.5 MiB)
python2.7_2.7.3.orig.tar.gz (13.6 MiB)