Format: 1.8 Date: Mon, 22 Jun 2015 10:55:41 -0400 Source: python2.7 Binary: python2.7 python2.7-minimal libpython2.7 python2.7-examples python2.7-dev idle-python2.7 python2.7-doc python2.7-dbg Architecture: all i386 Version: 2.7.3-0ubuntu3.8 Distribution: precise Urgency: medium Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Marc Deslauriers Description: idle-python2.7 - IDE for Python (v2.7) using Tkinter libpython2.7 - Shared Python runtime library (version 2.7) python2.7 - Interactive high-level object-oriented language (version 2.7) python2.7-dbg - Debug Build of the Python Interpreter (version 2.7) python2.7-dev - Header files and a static library for Python (v2.7) python2.7-doc - Documentation for the high-level object-oriented language Python python2.7-examples - Examples for the Python language (v2.7) python2.7-minimal - Minimal subset of the Python language (version 2.7) Changes: python2.7 (2.7.3-0ubuntu3.8) precise-security; urgency=medium . * SECURITY UPDATE: denial of service in multiple servers - debian/patches/CVE-2013-1752-ftplib.patch: limit amount of data read in Lib/ftplib.py, added test to Lib/test/test_ftplib.py. - debian/patches/CVE-2013-1752-httplib-1.patch: limit long lines in Lib/httplib.py. - debian/patches/CVE-2013-1752-httplib-2.patch: limit amount of headers in Lib/httplib.py, added test to Lib/test/test_httplib.py. - debian/patches/CVE-2013-1752-imaplib-1.patch: limit line length in Lib/imaplib.py, added test to Lib/test/test_imaplib.py. - debian/patches/CVE-2013-1752-imaplib-2.patch: disable broken test in Lib/test/test_imaplib.py. - debian/patches/CVE-2013-1752-nntplib.patch: limit line length in Lib/nntplib.py, added test to Lib/test/test_nntplib.py. - debian/patches/CVE-2013-1752-poplib.patch: limit maximum line length in Lib/poplib.py, added test to Lib/test/test_poplib.py. - debian/patches/CVE-2013-1752-smtplib.patch: limit amount read from the network in Lib/smtplib.py, added test to Lib/test/test_smtplib.py. - CVE-2013-1752 * SECURITY UPDATE: denial of service via xmlrpc gzip-compressed HTTP bodies - debian/patches/CVE-2013-1753.patch: add default limit in Lib/xmlrpclib.py, added test to Lib/test/test_xmlrpc.py. - CVE-2013-1753 * SECURITY UPDATE: arbitrary memory read via idx argument - debian/patches/CVE-2014-4616.patch: reject negative idx values in Modules/_json.c, added test to Lib/json/tests/test_decode.py. - CVE-2014-4616 * SECURITY UPDATE: code execution or file disclosure via CGIHTTPServer - debian/patches/CVE-2014-4650.patch: url unquote path in Lib/CGIHTTPServer.py, added test to Lib/test/test_httpservers.py. - CVE-2014-4650 * SECURITY UPDATE: information disclosure via buffer function - debian/patches/CVE-2014-7185.patch: avoid overflow in Objects/bufferobject.c, added test to Lib/test/test_buffer.py. - CVE-2014-7185 Checksums-Sha1: bcfc89ead07d92fc89087220c3e4fc937943b9dc 683064 python2.7-examples_2.7.3-0ubuntu3.8_all.deb fa0d97f57c702ed51ec61a4f33baf06a0400e5d6 251862 idle-python2.7_2.7.3-0ubuntu3.8_all.deb 0360341f2a74bd834b8639b3afe19b2ba62a6b62 6216560 python2.7-doc_2.7.3-0ubuntu3.8_all.deb f3988e7c4695a169869c7ba320900f45f44d142c 2642400 python2.7_2.7.3-0ubuntu3.8_i386.deb 84c9103137e7d2096b1b95dd9b4d7a0f02371f94 1683282 python2.7-minimal_2.7.3-0ubuntu3.8_i386.deb 6211a7bfa1fc53b5eabe35a57d6255ad767f2782 1148086 libpython2.7_2.7.3-0ubuntu3.8_i386.deb 1368ff0aaee33279df9bc4ceabf5c3acef633a15 29252070 python2.7-dev_2.7.3-0ubuntu3.8_i386.deb 5e6628d420520872d927c9129aafcb2593165c14 8983660 python2.7-dbg_2.7.3-0ubuntu3.8_i386.deb 339846caa60ccb1f077476d22e570b32ceabaa9d 114534 python2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb 0edfe3ca599d0ec70d9658e16f078447b4ccccb7 192908 python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb 03e8aa76a677619e8064c258996057e5d00558c6 182558 libpython2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb Checksums-Sha256: 7536e954426fa5d197ce200e0b395ed0c9468cee438efda5db69fbd340bb2327 683064 python2.7-examples_2.7.3-0ubuntu3.8_all.deb 73d3eb44e71c68d2bd612295411d20c682e2970580ba89796057a2090ce54da9 251862 idle-python2.7_2.7.3-0ubuntu3.8_all.deb c5d2865234d0345f945e4aeec5629e33684d61826ed4499500ec12b60f59f0b9 6216560 python2.7-doc_2.7.3-0ubuntu3.8_all.deb 01b3cac9ff390a0c1e54149090b911f3fad91f9decfb6d99c50f58b08d79c5af 2642400 python2.7_2.7.3-0ubuntu3.8_i386.deb 44d31aa23201d635b4e2ecf1825dca99219ebd78fe95b63d01ac4caa427ba980 1683282 python2.7-minimal_2.7.3-0ubuntu3.8_i386.deb ee0640a72fb7751dbba1cb133e5f457db17d5d8f3322d02353bbee02c2c43588 1148086 libpython2.7_2.7.3-0ubuntu3.8_i386.deb 2ccec9459c339721254f1c27922225eb1bd9326c551bf6d9272b5254fcd500c5 29252070 python2.7-dev_2.7.3-0ubuntu3.8_i386.deb f3a49fad105910ddaa663a5d2876f1931c98339886a8e49ac29c248bd16688f6 8983660 python2.7-dbg_2.7.3-0ubuntu3.8_i386.deb db03c9a6c25e2cf4b861323f8c9961ee420b2055b0bdc3e0063f1ce87efe2a95 114534 python2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb 2eb37cb70878b766477a87550edcb7d8e9887d874bdb0e45a19a9fbfa0e3790f 192908 python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb 83f0278572865bff08535275ac05c8c1ef89417bad5ee6869e952d67d802f9f5 182558 libpython2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb Files: 93d809370e2bd8f2659c3b42a1fb2e1c 683064 python optional python2.7-examples_2.7.3-0ubuntu3.8_all.deb 2a80577e6146ebbe6e8414982c540726 251862 python optional idle-python2.7_2.7.3-0ubuntu3.8_all.deb 9556f12f6a13254cbdc483ee2c91b0e3 6216560 doc optional python2.7-doc_2.7.3-0ubuntu3.8_all.deb f861891a63866605242f3a33328f47a0 2642400 python optional python2.7_2.7.3-0ubuntu3.8_i386.deb ac948c4b912877f2e7910fb57970c0f6 1683282 python optional python2.7-minimal_2.7.3-0ubuntu3.8_i386.deb b35958e0f74855c5bb164c96cd0eec21 1148086 libs optional libpython2.7_2.7.3-0ubuntu3.8_i386.deb 8d77fbb187667220e6d1ef5cda4624c9 29252070 python optional python2.7-dev_2.7.3-0ubuntu3.8_i386.deb adcedcb1af2f1c09465aa77339fe6861 8983660 debug extra python2.7-dbg_2.7.3-0ubuntu3.8_i386.deb 3f2f6fa95f5cff2dca72ab6f60e1dcbc 114534 python extra python2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb bcb5e56574a9932fbaca147fa0b79a6a 192908 python extra python2.7-minimal-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb c5f151d83298567b73914fac60d89173 182558 libs extra libpython2.7-dbgsym_2.7.3-0ubuntu3.8_i386.ddeb Original-Maintainer: Matthias Klose