{"id":59174,"date":"2024-08-27T18:19:31","date_gmt":"2024-08-27T15:19:31","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/180408\/dsa-5759-1.txt"},"modified":"2024-08-27T18:19:31","modified_gmt":"2024-08-27T15:19:31","slug":"debian-security-advisory-5759-1","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/debian-security-advisory-5759-1\/","title":{"rendered":"Debian Security Advisory 5759-1"},"content":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;<br \/>Hash: SHA512<\/p>\n<p>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<br \/>Debian Security Advisory DSA-5759-1 security@debian.org<br \/>https:\/\/www.debian.org\/security\/ Moritz Muehlenhoff<br \/>August 27, 2024 https:\/\/www.debian.org\/security\/faq<br \/>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<\/p>\n<p>Package : python3.11<br \/>CVE ID : CVE-2024-0397 CVE-2024-4032 CVE-2024-8088<\/p>\n<p>Multiple security issues were discovered in Python, a high-level,<br \/>interactive, object-oriented language:<\/p>\n<p>CVE-2024-0397<\/p>\n<p>A race condition in the ssl module was found when accessing<br \/>CA certificates.<\/p>\n<p>CVE-2024-4032<\/p>\n<p>The ipaddress module contained incorrect information whether<br \/>some ipv4 and ipv6 address ranges are designated as globally<br \/>reachable or private.<\/p>\n<p>CVE-2024-8088<\/p>\n<p>Incorrect handling of path names in the zipfile module could<br \/>result in an infinite loop when processing a zip archive<br \/>(resulting in denial of service)<\/p>\n<p>For the stable distribution (bookworm), these problems have been fixed in<br \/>version 3.11.2-6+deb12u3.<\/p>\n<p>We recommend that you upgrade your python3.11 packages.<\/p>\n<p>For the detailed security status of python3.11 please refer to<br \/>its security tracker page at:<br \/>https:\/\/security-tracker.debian.org\/tracker\/python3.11<\/p>\n<p>Further information about Debian Security Advisories, how to apply<br \/>these updates to your system and frequently asked questions can be<br \/>found at: https:\/\/www.debian.org\/security\/<\/p>\n<p>Mailing list: debian-security-announce@lists.debian.org<br \/>&#8212;&#8211;BEGIN PGP SIGNATURE&#8212;&#8211;<\/p>\n<p>iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmbNrEwACgkQEMKTtsN8<br \/>TjaT3w\/\/VSRJYCGoVdKU8cdx82Q70C8qbMg044R\/xeET4lwIGUP7iH5V71IVK3sj<br \/>xSo5PpaXczZZEwCF8qPLytZ3uj\/QDzYDW20uCz\/78TQBYhA\/DpB2OGwBOuLCJ+oF<br \/>sNvA\/tI9FQgqYJ8WsdmCTidjK4ftu5GQPHWHOWPf13ysUO9zfbH+Iwvr1g7UxhRu<br \/>s+1UUaTGjj0B5XFaeFeCIW5oUjSn4FGXjjGdVeWAG8tUtLtDZZ\/65ZbNfxLG13Wy<br \/>5xHne8V1KHfAFiEUI+ugiQuHaI\/l1CCIEMoIztSncv1MAjl\/QlxwpVGKtkevhABZ<br \/>aR+i2wn2RR130BgOxrLigvy0TZIVnm51wpwncAleMGyseVRwghEeIsczOLry61Ut<br \/>rvkx4CuOsk6wArBpKVmty4n\/1U0iGjKCmvvDEjxTioDhhIeZJtaT61v6UiiVZiy9<br \/>CoHvz3ZLoe8WApTroco8LIiCug4bo55OgPRE7CFB2Qua7sp+TuD\/nYK6dF+XKwPM<br \/>Qpt7jGS7c5iD\/GN8t1RbJusg568LjZWyXlqLZrFFSe2lkkud7UWHB8Z0kopi0l8x<br \/>VmAfDHgxycBZH9l2QIsYwu01xadmvWrOzddwa5C9aU9SvWaRKt3TItOSbqj5NsTo<br \/>ApzBr7cSPQsejvev5braLRcR89rJ1S2DLZ+dZZR9CT5hVZCZzFs=<br \/>=TwPS<br \/>&#8212;&#8211;END PGP SIGNATURE&#8212;&#8211;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;Hash: SHA512 &#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-Debian Security Advisory DSA-5759-1 security@debian.orghttps:\/\/www.debian.org\/security\/ Moritz MuehlenhoffAugust 27, 2024 https:\/\/www.debian.org\/security\/faq&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;- Package : python3.11CVE ID : CVE-2024-0397 CVE-2024-4032 CVE-2024-8088 Multiple security issues were discovered in Python, a high-level,interactive, object-oriented language: CVE-2024-0397 A race condition in the ssl module was found when accessingCA certificates. CVE-2024-4032 The ipaddress module contained incorrect &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-59174","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=59174"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59174\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=59174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=59174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=59174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}