FEDORA-2016-308f78b2f4

security update in Fedora 23 for python3

Status: stable 2 years ago

CVE-2016-5636

How to install

sudo dnf upgrade --advisory=FEDORA-2016-308f78b2f4

Comments 8

This update has been submitted for testing by cstratak.

This update has been pushed to testing.

For testing the CVE-2016-5636 download https://bugs.python.org/file41677/crash.py and execute it. Instead of a segmentation fault you should get a "zipimport.ZipImportError: negative data size"

Tested as described, got zipimport.ZipImportError: negative data size.

karma: +1 #1345859: +1 #1353918: +1

works for me

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1345859 CVE-2016-5636 python3: python: Heap overflow in zipimporter module [fedora-all]
#1353918 python3 FTBFS
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 2

0+2 #1345859 CVE-2016-5636 python3: python: Heap overflow in zipimporter module [fedora-all]
0+2 #1353918 python3 FTBFS

Automated Test Results