-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:186
http://www.mandriva.com/security/
_______________________________________________________________________
Package : python
Date : September 4, 2008
Affected: Corporate 3.0, Multi Network Firewall 2.0
_______________________________________________________________________
Problem Description:
Multiple integer overflows were reported by the Google Security Team
that had been fixed in Python 2.5.2 (CVE-2008-3143).
The Python packages on Corporate 3 have been updated to the latest
version 2.3.7, which corrects this issue.
_______________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3143
_______________________________________________________________________
Updated Packages:
Corporate 3.0:
34e780fd42571387982688486bcfdad6 corporate/3.0/i586/libpython2.3-2.3.7-0.1.C30mdk.i586.rpm
9b0043b0cae2f92eb39a3cb48e35a50e corporate/3.0/i586/libpython2.3-devel-2.3.7-0.1.C30mdk.i586.rpm
27ec7af68b8ac69feef9d2e9c3f59d65 corporate/3.0/i586/python-2.3.7-0.1.C30mdk.i586.rpm
16a7791f08cf7d89a5780b8c25f4d65d corporate/3.0/i586/python-base-2.3.7-0.1.C30mdk.i586.rpm
2b2e39c9db5794abdd895220a38d8cd8 corporate/3.0/i586/python-docs-2.3.7-0.1.C30mdk.i586.rpm
a631b1fd887fded582437d6799fffa5d corporate/3.0/i586/tkinter-2.3.7-0.1.C30mdk.i586.rpm
a867d0a919c3fd0d9607d4cd64d89d3c corporate/3.0/SRPMS/python-2.3.7-0.1.C30mdk.src.rpm
Corporate 3.0/X86_64:
3bea043cedbf23095e6aae6f4eacbe04 corporate/3.0/x86_64/lib64python2.3-2.3.7-0.1.C30mdk.x86_64.rpm
9d576933f0699d5b7f0fc1bb78fd7514 corporate/3.0/x86_64/lib64python2.3-devel-2.3.7-0.1.C30mdk.x86_64.rpm
e8a8494fcd526c0f3433dc03cb35672b corporate/3.0/x86_64/python-2.3.7-0.1.C30mdk.x86_64.rpm
7bf8423818a1e1221b51f28e05e3c616 corporate/3.0/x86_64/python-base-2.3.7-0.1.C30mdk.x86_64.rpm
79d213fe64ac42cf95d4c4072c813cae corporate/3.0/x86_64/python-docs-2.3.7-0.1.C30mdk.x86_64.rpm
437b615287bf5022edb1700f6d8b8790 corporate/3.0/x86_64/tkinter-2.3.7-0.1.C30mdk.x86_64.rpm
a867d0a919c3fd0d9607d4cd64d89d3c corporate/3.0/SRPMS/python-2.3.7-0.1.C30mdk.src.rpm
Multi Network Firewall 2.0:
34e780fd42571387982688486bcfdad6 mnf/2.0/i586/libpython2.3-2.3.7-0.1.C30mdk.i586.rpm
27ec7af68b8ac69feef9d2e9c3f59d65 mnf/2.0/i586/python-2.3.7-0.1.C30mdk.i586.rpm
16a7791f08cf7d89a5780b8c25f4d65d mnf/2.0/i586/python-base-2.3.7-0.1.C30mdk.i586.rpm
a867d0a919c3fd0d9607d4cd64d89d3c mnf/2.0/SRPMS/python-2.3.7-0.1.C30mdk.src.rpm
_______________________________________________________________________
To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/security/advisories
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
_______________________________________________________________________
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQFIwDfHmqjQ0CJFipgRAnpYAKDN/AxpERzTga5Uptum3VNeW2kRJwCcCWZv
stvEAyS71HncWdMnJdg+IUQ=
=XDEP
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Sep 04 2008
Intro
