- Vulnerability/
- USN-4754-5
USN-4754-5: Python vulnerability
First published: Tue Feb 08 2022(Updated: )
USN-4754-1 fixed vulnerabilities in Python. Because of a regression, a subsequent update removed the fix for CVE-2021-3177. This update reinstates the security fix for CVE-2021-3177 in Ubuntu 14.04 ESM. Original advisory details: It was discovered that Python incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service. (CVE-2020-27619, CVE-2021-3177)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/python2.7 | <2.7.6-8ubuntu0.6+esm10 | 2.7.6-8ubuntu0.6+esm10 |
| =14.04 | ||
| All of | ||
| ubuntu/python2.7-minimal | <2.7.6-8ubuntu0.6+esm10 | 2.7.6-8ubuntu0.6+esm10 |
| =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this Python vulnerability?
The vulnerability ID of this Python vulnerability is USN-4754-5.
What is the severity of USN-4754-5?
The severity of USN-4754-5 is not specified in the information provided.
Which versions of Ubuntu are affected by USN-4754-5?
Ubuntu 14.04 is affected by USN-4754-5.
What is the affected software of USN-4754-5?
The affected software of USN-4754-5 is Python 2.7.6-8ubuntu0.6+esm10.
How do I fix USN-4754-5?
To fix USN-4754-5, update to version 2.7.6-8ubuntu0.6+esm10 of Python 2.7.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- anchor-related/USN-4754-1
- anchor-related/USN-4754-4
- anchor-related/USN-4754-3
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/14.04