USN-4151-1 fixed several vulnerabilities in Python. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that Python incorrectly parsed certain email addresses. A remote attacker could possibly use this issue to trick Python applications into accepting email addresses that should be denied. (CVE-2019-16056)
It was discovered that the Python documentation XML-RPC server incorrectly handled certain fields. A remote attacker could use this issue to execute a cross-site scripting (XSS) attack. (CVE-2019-16935)
{ "availability": "No subscription required", "binaries": [ { "python2.7": "2.7.6-8ubuntu0.6+esm3", "libpython2.7": "2.7.6-8ubuntu0.6+esm3", "libpython2.7-stdlib": "2.7.6-8ubuntu0.6+esm3", "python2.7-dev": "2.7.6-8ubuntu0.6+esm3", "python2.7-examples": "2.7.6-8ubuntu0.6+esm3", "python2.7-doc": "2.7.6-8ubuntu0.6+esm3", "idle-python2.7": "2.7.6-8ubuntu0.6+esm3", "libpython2.7-testsuite": "2.7.6-8ubuntu0.6+esm3", "python2.7-minimal": "2.7.6-8ubuntu0.6+esm3", "libpython2.7-dev": "2.7.6-8ubuntu0.6+esm3", "libpython2.7-minimal": "2.7.6-8ubuntu0.6+esm3" } ] }
{ "availability": "No subscription required", "binaries": [ { "python3.4": "3.4.3-1ubuntu1~14.04.7+esm4", "python3.4-examples": "3.4.3-1ubuntu1~14.04.7+esm4", "libpython3.4-testsuite": "3.4.3-1ubuntu1~14.04.7+esm4", "python3.4-doc": "3.4.3-1ubuntu1~14.04.7+esm4", "python3.4-minimal": "3.4.3-1ubuntu1~14.04.7+esm4", "python3.4-venv": "3.4.3-1ubuntu1~14.04.7+esm4", "libpython3.4-stdlib": "3.4.3-1ubuntu1~14.04.7+esm4", "idle-python3.4": "3.4.3-1ubuntu1~14.04.7+esm4", "python3.4-dev": "3.4.3-1ubuntu1~14.04.7+esm4", "libpython3.4-dev": "3.4.3-1ubuntu1~14.04.7+esm4", "libpython3.4-minimal": "3.4.3-1ubuntu1~14.04.7+esm4", "libpython3.4": "3.4.3-1ubuntu1~14.04.7+esm4" } ] }