FEDORA-2021-b1843407ca created by churchyard 7 months ago for Fedora 33
stable

Update to 3.9.2. Full changelog. Contains security fix for CVE-2021-23336. Compile the debug build (python3-debug package) with -O0 instead of -Og for easier debugging e.g. with gdb.

How to install

sudo dnf upgrade --advisory=FEDORA-2021-b1843407ca

This update has been submitted for testing by churchyard.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

churchyard edited this update.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

churchyard edited this update.

7 months ago

This update has been pushed to testing.

7 months ago
User Icon lbalhar commented & provided feedback 7 months ago
karma

Works well and fixes the CVE.

BZ#1928904 CVE-2021-23336 python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters
BZ#1928921 CVE-2021-23336 python3.9: python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters [fedora-all]
User Icon bojan provided feedback 7 months ago
karma

This update can be pushed to stable now if the maintainer wishes

7 months ago
User Icon ersen provided feedback 7 months ago
karma
User Icon atim provided feedback 7 months ago
karma
karma
User Icon kparal commented & provided feedback 7 months ago
karma

no regressions in a general system usage

User Icon renault commented & provided feedback 7 months ago
karma

No regressions found

User Icon frantisekz commented & provided feedback 7 months ago
karma

Seems to work well for my projects

User Icon lbrabec commented & provided feedback 7 months ago
karma

no regressions found

This update has been submitted for stable by bodhi.

7 months ago

This update has been pushed to stable.

6 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
9
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
9
Stable by Time
disabled
Dates
submitted
7 months ago
in testing
7 months ago
in stable
6 months ago
modified
7 months ago
BZ#1928904 CVE-2021-23336 python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters
0
1
BZ#1928921 CVE-2021-23336 python3.9: python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters [fedora-all]
0
1

Automated Test Results