[ALSA-2019:0981] Important: python27:2.7 security update
Type:
security
Severity:
important
Release date:
2019-05-07
Description:
Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. SQLAlchemy is an Object Relational Mapper (ORM) that provides a flexible, high-level interface to SQL databases. Security Fix(es): * python: Information Disclosure due to urlsplit improper NFKC normalization (CVE-2019-9636) * python-sqlalchemy: SQL Injection when the order_by parameter can be controlled (CVE-2019-7164) * python-sqlalchemy: SQL Injection when the group_by parameter can be controlled (CVE-2019-7548) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages:
  • python2-pluggy-0.6.0-8.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python-psycopg2-doc-2.7.5-7.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-pytz-2017.2-12.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-rpm-macros-3-38.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-setuptools_scm-1.15.7-6.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-psycopg2-tests-2.7.5-7.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-docutils-0.14-12.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-pyyaml-3.12-16.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-mock-2.0.0-13.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-pysocks-1.6.8-6.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-PyMySQL-0.8.0-10.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-attrs-17.4.0-10.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-psycopg2-debug-2.7.5-7.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-Cython-0.28.1-7.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-pytest-mock-1.9.0-4.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-ipaddress-1.0.18-6.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-chardet-3.0.4-10.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-markupsafe-0.23-19.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-idna-2.5-7.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-pytest-3.4.2-13.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-psycopg2-2.7.5-7.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-coverage-4.5.1-4.module_el8.6.0+2781+fed64c13.x86_64.rpm
  • python2-py-1.5.3-6.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python2-funcsigs-1.0.2-13.module_el8.6.0+2781+fed64c13.noarch.rpm
  • python-psycopg2-doc-2.7.5-7.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-psycopg2-debug-2.7.5-7.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-Cython-0.28.1-7.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-markupsafe-0.23-19.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-pyyaml-3.12-16.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-coverage-4.5.1-4.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-psycopg2-2.7.5-7.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python2-psycopg2-tests-2.7.5-7.module_el8.6.0+2781+fed64c13.aarch64.rpm
  • python-psycopg2-doc-2.7.5-7.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-psycopg2-tests-2.7.5-7.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-pyyaml-3.12-16.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-psycopg2-debug-2.7.5-7.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-Cython-0.28.1-7.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-markupsafe-0.23-19.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-psycopg2-2.7.5-7.module_el8.6.0+2781+fed64c13.ppc64le.rpm
  • python2-coverage-4.5.1-4.module_el8.6.0+2781+fed64c13.ppc64le.rpm
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.