Univention Bugzilla – Bug 55370
python3.7: Multiple issues (5.0)
Last modified: 2022-11-02 16:47:16 CET
New Debian python3.7 3.7.3-2+deb10u4 fixes: This update addresses the following issue: 3.7.3-2+deb10u4 (Mon, 31 Oct 2022 16:04:00 +0200) * Non-maintainer upload by the LTS Security Team. * Resolve CVE-2022-37454, a buffer overflow it the SHA-3 implementation in the _sha3 (and thus hashlib) module.
--- mirror/ftp/pool/main/p/python3.7/python3.7_3.7.3-2+deb10u3.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/python3.7_3.7.3-2+deb10u4.dsc @@ -1,3 +1,9 @@ +3.7.3-2+deb10u4 [Mon, 31 Oct 2022 16:04:00 +0200] Stefano Rivera <stefanor@debian.org>: + + * Non-maintainer upload by the LTS Security Team. + * Resolve CVE-2022-37454, a buffer overflow it the SHA-3 implementation in + the _sha3 (and thus hashlib) module. + 3.7.3-2+deb10u3 [Fri, 22 Jan 2021 21:04:44 +0100] Moritz Mühlenhoff <jmm@debian.org>: * CVE-2020-26116 <http://piuparts.knut.univention.de/5.0-2/#3529817264623904857>
OK: yaml OK: announce_errata OK: patch OK: piuparts
<https://errata.software-univention.de/#/?erratum=5.0x476>