FEDORA-2021-7d3a9004e2 created by churchyard a week ago for Fedora 33
stable

Update to 3.8.8. Security fix for CVE-2021-23336.

How to install

sudo dnf upgrade --advisory=FEDORA-2021-7d3a9004e2

This update has been submitted for testing by churchyard.

a week ago

This update's test gating status has been changed to 'ignored'.

a week ago

This update's test gating status has been changed to 'waiting'.

a week ago

churchyard edited this update.

a week ago

This update's test gating status has been changed to 'ignored'.

a week ago

This update has been pushed to testing.

a week ago
User Icon lbalhar commented & provided feedback a week ago
karma

Works well and fixes the CVE.

BZ#1928904 CVE-2021-23336 python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters
BZ#1928920 CVE-2021-23336 python3.8: python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters [fedora-all]

This update has been submitted for stable by bodhi.

a week ago

This update has been pushed to stable.

6 days ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
1
Stable by Time
7 days
Dates
submitted
a week ago
in testing
a week ago
in stable
6 days ago
modified
a week ago
BZ#1928904 CVE-2021-23336 python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters
0
1
BZ#1928920 CVE-2021-23336 python3.8: python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters [fedora-all]
0
1

Automated Test Results