USN-4333-1 fixed vulnerabilities in Python. This update provides the corresponding update for Ubuntu 20.04 LTS.
Original advisory details:
It was discovered that Python incorrectly stripped certain characters from requests. A remote attacker could use this issue to perform CRLF injection. (CVE-2019-18348)
It was discovered that Python incorrectly handled certain HTTP requests. An attacker could possibly use this issue to cause a denial of service. (CVE-2020-8492)
{ "availability": "No subscription required", "binaries": [ { "libpython3.8": "3.8.2-1ubuntu1.1", "libpython3.8-minimal": "3.8.2-1ubuntu1.1", "python3.8-dbg": "3.8.2-1ubuntu1.1", "python3.8-doc": "3.8.2-1ubuntu1.1", "python3.8-minimal": "3.8.2-1ubuntu1.1", "libpython3.8-testsuite": "3.8.2-1ubuntu1.1", "idle-python3.8": "3.8.2-1ubuntu1.1", "libpython3.8-dbg": "3.8.2-1ubuntu1.1", "python3.8": "3.8.2-1ubuntu1.1", "python3.8-venv": "3.8.2-1ubuntu1.1", "libpython3.8-stdlib": "3.8.2-1ubuntu1.1", "python3.8-dev": "3.8.2-1ubuntu1.1", "python3.8-examples": "3.8.2-1ubuntu1.1", "libpython3.8-dev": "3.8.2-1ubuntu1.1" } ] }