[SECURITY] Fedora 36 Update: python3.8-3.8.14-1.fc36 - package-announce - Fedora mailing-lists

12 Sep 2022


      --------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-66b65beccb
2022-09-13 01:25:49.112605
--------------------------------------------------------------------------------
Name        : python3.8
Product     : Fedora 36
Version     : 3.8.14
Release     : 1.fc36
URL         : https://www.python.org/
Summary     : Version 3.8 of the Python interpreter
Description :
Python 3.8 package for developers.
This package exists to allow developers to test their code against an older
version of Python. This is not a full Python stack and if you wish to run
your applications with Python 3.8, see other distributions
that support it, such as an older Fedora release.
--------------------------------------------------------------------------------
Update Information:
- Update to 3.8.14 - Contains security fix for CVE-2020-10735
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep  7 2022 Miro Hron��ok mhroncok@redhat.com - 3.8.14-1
- Update to 3.8.14
- Contains security fix for CVE-2020-10735
* Fri Jul 22 2022 Fedora Release Engineering releng@fedoraproject.org - 3.8.13-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1834423 - CVE-2020-10735 python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS
        https://bugzilla.redhat.com/show_bug.cgi?id=1834423
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-66b65beccb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------