Format: 1.8
Date: Mon, 08 Mar 2021 13:02:45 +0000
Source: python2.7
Binary: libpython2.7 libpython2.7-dbg libpython2.7-dev libpython2.7-minimal libpython2.7-stdlib python2.7 python2.7-dbg python2.7-dev python2.7-minimal
Architecture: i386
Version: 2.7.18-1~20.04.1
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-052.buildd>
Changed-By: Paulo Flabiano Smorigo <pfsmorigo@canonical.com>
Description:
 libpython2.7 - Shared Python runtime library (version 2.7)
 libpython2.7-dbg - Debug Build of the Python Interpreter (version 2.7)
 libpython2.7-dev - Header files and a static library for Python (v2.7)
 libpython2.7-minimal - Minimal subset of the Python language (version 2.7)
 libpython2.7-stdlib - Interactive high-level object-oriented language (standard library
 python2.7  - Interactive high-level object-oriented language (version 2.7)
 python2.7-dbg - Debug Build of the Python Interpreter (version 2.7)
 python2.7-dev - Header files and a static library for Python (v2.7)
 python2.7-minimal - Minimal subset of the Python language (version 2.7)
Changes:
 python2.7 (2.7.18-1~20.04.1) focal-security; urgency=medium
 .
   * SECURITY UPDATE: Denial of service
     - debian/patches/CVE-2019-9674.patch: add pitfalls to
       zipfile module doc in Doc/library/zipfile.rst,
       Misc/NEWS.d/next/Documentation/2019-06-04-09-29-00.bpo-36260.WrGuc-.rst.
     - CVE-2019-9674
   * SECURITY UPDATE: Misleading information
     - debian/patches/CVE-2019-17514.patch: explain that the orderness of the
       of the result is system-dependant in Doc/library/glob.rst.
     - CVE-2019-17514
   * SECURITY UPDATE: Infinite loop
     - debian/patches/CVE-2019-20907.patch: avoid infinite loop in the
       tarfile module in Lib/tarfile.py, Lib/test/test_tarfile.py.
     - CVE-2019-20907
   * SECURITY UPDATE: Denial of service
     - debian/patches/CVE-2020-8492.patch: fix the regex to prevent
       the regex denial of service in Lib/urllib2.py.
     - CVE-2020-8492
   * SECURITY UPDATE: CRLF injection
     - debian/patches/CVE-2020-26116.patch: prevent header injection
       in http methods in Lib/httplib.py, Lib/test/test_httlib.py.
     - CVE-2020-26116
   * SECURITY UPDATE: Buffer overflow
     - debian/patches/CVE-2021-3177.patch: use improved patch backport.
     - CVE-2021-3177
Checksums-Sha1:
 57dbfc39ce807f31691da2107c1b510004fbe744 4272096 libpython2.7-dbg_2.7.18-1~20.04.1_i386.deb
 53eebe8af8978c48d0b839a65fd9096fe5b7f092 2641096 libpython2.7-dev_2.7.18-1~20.04.1_i386.deb
 ef87383b5024c79894587f37e9c699ea4d5fa88f 335412 libpython2.7-minimal_2.7.18-1~20.04.1_i386.deb
 8e3f1226eb840ed5cac49fef1625c0bb6264c1e1 1908904 libpython2.7-stdlib_2.7.18-1~20.04.1_i386.deb
 26712bfba6332be9c89138c65a547a244a70f9bf 1065816 libpython2.7_2.7.18-1~20.04.1_i386.deb
 a3f8aa04ff54648f32e4f6d43a6f5a3809a9fc3b 8819736 python2.7-dbg_2.7.18-1~20.04.1_i386.deb
 525aeb62ed26fefd6bba5a8cc7e82f9d08503d44 287772 python2.7-dev_2.7.18-1~20.04.1_i386.deb
 2068c79b372a3e1ac7d1e72eb5de8bef7e8bfd14 1339760 python2.7-minimal_2.7.18-1~20.04.1_i386.deb
 4206d2ec9974971c0413aaa114cecce1145be1f9 11866 python2.7_2.7.18-1~20.04.1_i386.buildinfo
 5087e3e69f7f3fa0ff855eb5f747fea27e5380fb 248248 python2.7_2.7.18-1~20.04.1_i386.deb
Checksums-Sha256:
 d5cc15b855fc75d1fc55f541fbfaffb55fece35b98eaa0070b2f88340e22abc3 4272096 libpython2.7-dbg_2.7.18-1~20.04.1_i386.deb
 9ad214e75d96844a96eb889cadddc13325d84458e63708200bd738038107465f 2641096 libpython2.7-dev_2.7.18-1~20.04.1_i386.deb
 d05160139cfe121933dc223cc619d126d040ed32c16566b9ca347978287b58e4 335412 libpython2.7-minimal_2.7.18-1~20.04.1_i386.deb
 f6b5fc57091026f2cd9db38e94e6df23768fabfdcc0a09a5a9249f2f343bb94a 1908904 libpython2.7-stdlib_2.7.18-1~20.04.1_i386.deb
 b54b453934b891d0e2705f4d4e2dee12e47b8344bdc2b15efb8dd7b66dca129f 1065816 libpython2.7_2.7.18-1~20.04.1_i386.deb
 03bb827d1e5bce84583103d5a966cb4bde990938ee90d24737bd2f8ca20771ea 8819736 python2.7-dbg_2.7.18-1~20.04.1_i386.deb
 aef17837339818c9a287304bf3aae670bbee162d0f998e454c28bd785437c586 287772 python2.7-dev_2.7.18-1~20.04.1_i386.deb
 a4bf58283b9072df8132473a1309deda7e61ad43338da00f693ad875aac83250 1339760 python2.7-minimal_2.7.18-1~20.04.1_i386.deb
 89dd23b4a4c2fd94ed415230ca9a639ee2c997f377ea1be3396a89adcb2a3e85 11866 python2.7_2.7.18-1~20.04.1_i386.buildinfo
 ae87d18c1bec6c47581835758276a06a5c380e6eb42d3d48a3facb1de7dd88c1 248248 python2.7_2.7.18-1~20.04.1_i386.deb
Files:
 c4a9870ceb27d7b9e45828b8218ffe0d 4272096 debug optional libpython2.7-dbg_2.7.18-1~20.04.1_i386.deb
 6001b9479d9373d70c745a8ecd21b4ae 2641096 libdevel optional libpython2.7-dev_2.7.18-1~20.04.1_i386.deb
 60362a2e865c17eca03764d6b25a0aad 335412 python optional libpython2.7-minimal_2.7.18-1~20.04.1_i386.deb
 b3e59ce60fd67241cd5501f8e9243698 1908904 python optional libpython2.7-stdlib_2.7.18-1~20.04.1_i386.deb
 dcc0e30b3933dedde6bc673196981693 1065816 libs optional libpython2.7_2.7.18-1~20.04.1_i386.deb
 607e9a3cac1639c15fe9a6e36eda7708 8819736 debug optional python2.7-dbg_2.7.18-1~20.04.1_i386.deb
 c384b093f0d56709e2740185ebf413f2 287772 python optional python2.7-dev_2.7.18-1~20.04.1_i386.deb
 1406c0cdd5a1ec4172b6be642854d87a 1339760 python optional python2.7-minimal_2.7.18-1~20.04.1_i386.deb
 42b2792a63c569db0553ccd52e697f95 11866 python optional python2.7_2.7.18-1~20.04.1_i386.buildinfo
 1061276696026673e5273f30c1607830 248248 python optional python2.7_2.7.18-1~20.04.1_i386.deb