[SECURITY] Fedora 38 Update: python3.6-3.6.15-27.fc38

updates@xxxxxxxxxxxxxxxxx · Sat, 16 Mar 2024 01:51:50 +0000 (UTC)

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-ebb3c95344
2024-03-16 01:50:49.900335
--------------------------------------------------------------------------------

Name        : python3.6
Product     : Fedora 38
Version     : 3.6.15
Release     : 27.fc38
URL         : https://www.python.org/
Summary     : Version 3.6 of the Python interpreter
Description :
Python 3.6 package for developers.

This package exists to allow developers to test their code against an older
version of Python. This is not a full Python stack and if you wish to run
your applications with Python 3.6, see other distributions
that support it, such as CentOS or RHEL with Software Collections
or older Fedora releases.

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2007-4559.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb 29 2024 Charalampos Stratakis <cstratak@xxxxxxxxxx> - 3.6.15-27
- Security fix for CVE-2007-4559
- Fixes: rhbz#2141080
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #263261 - CVE-2007-4559 python: tarfile module directory traversal
        https://bugzilla.redhat.com/show_bug.cgi?id=263261
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-ebb3c95344' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
_______________________________________________
package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue