USN-5342-1
See a problem?- Source
- https://ubuntu.com/security/notices/USN-5342-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5342-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-5342-1
- Related
- Published
- 2022-03-28T09:39:26.415991Z
- Modified
- 2022-03-28T09:39:26.415991Z
- Summary
- python2.7, python3.4, python3.5, python3.6, python3.8 vulnerabilities
- Details
-
David Schwörer discovered that Python incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 18.04 LTS. (CVE-2021-3426)
It was discovered that Python incorrectly handled certain FTP requests. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 LTS. (CVE-2021-4189)
It was discovered that Python incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. (CVE-2022-0391)
- References
Affected packages
Ubuntu:Pro:14.04:LTS / python3.4
Package
- Name
- python3.4
- Purl
- pkg:deb/ubuntu/python3.4@3.4.3-1ubuntu1~14.04.7+esm12?arch=src?distro=trusty/esm
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.4.3-1ubuntu1~14.04.7+esm12
Affected versions
3.*
3.4~b1-0ubuntu3
3.4~b1-4ubuntu4
3.4~b1-4ubuntu6
3.4~b1-5ubuntu2
3.4~b2-1
3.4~b3-1ubuntu1
3.4~rc1-1build1
3.4~rc2-1
3.4~rc3-0ubuntu1
3.4.0-1
3.4.0-2ubuntu1
3.4.0-2ubuntu1.1
3.4.3-1ubuntu1~14.04.1
3.4.3-1ubuntu1~14.04.3
3.4.3-1ubuntu1~14.04.4
3.4.3-1ubuntu1~14.04.5
3.4.3-1ubuntu1~14.04.6
3.4.3-1ubuntu1~14.04.7
3.4.3-1ubuntu1~14.04.7+esm2
3.4.3-1ubuntu1~14.04.7+esm4
3.4.3-1ubuntu1~14.04.7+esm6
3.4.3-1ubuntu1~14.04.7+esm7
3.4.3-1ubuntu1~14.04.7+esm8
3.4.3-1ubuntu1~14.04.7+esm10
3.4.3-1ubuntu1~14.04.7+esm11
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"python3.4-examples": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-dbg": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-minimal": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-venv": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-stdlib": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-dev-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-dbg": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-stdlib-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-minimal": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-minimal-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-dev-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-testsuite": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-minimal-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-doc": "3.4.3-1ubuntu1~14.04.7+esm12",
"idle-python3.4": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-dev": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4-venv-dbgsym": "3.4.3-1ubuntu1~14.04.7+esm12",
"libpython3.4-dev": "3.4.3-1ubuntu1~14.04.7+esm12",
"python3.4": "3.4.3-1ubuntu1~14.04.7+esm12"
}
]
}
Ubuntu:Pro:16.04:LTS / python2.7
Package
- Name
- python2.7
- Purl
- pkg:deb/ubuntu/python2.7@2.7.12-1ubuntu0~16.04.18+esm1?arch=src?distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.7.12-1ubuntu0~16.04.18+esm1
Affected versions
2.*
2.7.10-4ubuntu1
2.7.10-4ubuntu2
2.7.11-2
2.7.11-3
2.7.11-4
2.7.11-6
2.7.11-7
2.7.11-7ubuntu1
2.7.12-1~16.04
2.7.12-1ubuntu0~16.04.1
2.7.12-1ubuntu0~16.04.2
2.7.12-1ubuntu0~16.04.3
2.7.12-1ubuntu0~16.04.4
2.7.12-1ubuntu0~16.04.8
2.7.12-1ubuntu0~16.04.9
2.7.12-1ubuntu0~16.04.11
2.7.12-1ubuntu0~16.04.12
2.7.12-1ubuntu0~16.04.13
2.7.12-1ubuntu0~16.04.14
2.7.12-1ubuntu0~16.04.16
2.7.12-1ubuntu0~16.04.18
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"libpython2.7-dbg": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-dbgsym": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-stdlib-dbgsym": "2.7.12-1ubuntu0~16.04.18+esm1",
"python2.7-examples": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-minimal-dbgsym": "2.7.12-1ubuntu0~16.04.18+esm1",
"python2.7-dbg": "2.7.12-1ubuntu0~16.04.18+esm1",
"python2.7-dev": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-testsuite": "2.7.12-1ubuntu0~16.04.18+esm1",
"python2.7-minimal": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-dev-dbgsym": "2.7.12-1ubuntu0~16.04.18+esm1",
"python2.7": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-minimal": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-stdlib": "2.7.12-1ubuntu0~16.04.18+esm1",
"python2.7-doc": "2.7.12-1ubuntu0~16.04.18+esm1",
"idle-python2.7": "2.7.12-1ubuntu0~16.04.18+esm1",
"libpython2.7-dev": "2.7.12-1ubuntu0~16.04.18+esm1"
}
]
}
Ubuntu:Pro:16.04:LTS / python3.5
Package
- Name
- python3.5
- Purl
- pkg:deb/ubuntu/python3.5@3.5.2-2ubuntu0~16.04.13+esm2?arch=src?distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.5.2-2ubuntu0~16.04.13+esm2
Affected versions
3.*
3.5.0-3
3.5.0-3ubuntu1
3.5.1~rc1-2ubuntu1
3.5.1-1
3.5.1-2
3.5.1-3
3.5.1-5
3.5.1-6ubuntu1
3.5.1-6ubuntu2
3.5.1-9ubuntu1
3.5.1-10
3.5.2-2~16.01
3.5.2-2~16.04
3.5.2-2ubuntu0~16.04.1
3.5.2-2ubuntu0~16.04.2
3.5.2-2ubuntu0~16.04.3
3.5.2-2ubuntu0~16.04.4
3.5.2-2ubuntu0~16.04.5
3.5.2-2ubuntu0~16.04.8
3.5.2-2ubuntu0~16.04.9
3.5.2-2ubuntu0~16.04.10
3.5.2-2ubuntu0~16.04.11
3.5.2-2ubuntu0~16.04.12
3.5.2-2ubuntu0~16.04.13
3.5.2-2ubuntu0~16.04.13+esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"python3.5-dev": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-minimal-dbgsym": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-dbgsym": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-dbg": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-minimal": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-stdlib": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5": "3.5.2-2ubuntu0~16.04.13+esm2",
"python3.5-minimal": "3.5.2-2ubuntu0~16.04.13+esm2",
"idle-python3.5": "3.5.2-2ubuntu0~16.04.13+esm2",
"python3.5-venv": "3.5.2-2ubuntu0~16.04.13+esm2",
"python3.5-examples": "3.5.2-2ubuntu0~16.04.13+esm2",
"python3.5": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-dev": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-stdlib-dbgsym": "3.5.2-2ubuntu0~16.04.13+esm2",
"python3.5-dbg": "3.5.2-2ubuntu0~16.04.13+esm2",
"python3.5-doc": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-testsuite": "3.5.2-2ubuntu0~16.04.13+esm2",
"libpython3.5-dev-dbgsym": "3.5.2-2ubuntu0~16.04.13+esm2"
}
]
}
Ubuntu:18.04:LTS / python2.7
Package
- Name
- python2.7
- Purl
- pkg:deb/ubuntu/python2.7@2.7.17-1~18.04ubuntu1.7?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.7.17-1~18.04ubuntu1.7
Affected versions
2.*
2.7.14-2ubuntu2
2.7.14-4
2.7.14-6
2.7.14-7
2.7.14-8
2.7.15~rc1-1
2.7.15~rc1-1ubuntu0.1
2.7.15-4ubuntu4~18.04
2.7.15-4ubuntu4~18.04.1
2.7.15-4ubuntu4~18.04.2
2.7.17-1~18.04
2.7.17-1~18.04ubuntu1
2.7.17-1~18.04ubuntu1.1
2.7.17-1~18.04ubuntu1.2
2.7.17-1~18.04ubuntu1.3
2.7.17-1~18.04ubuntu1.5
2.7.17-1~18.04ubuntu1.6
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"python2.7": "2.7.17-1~18.04ubuntu1.7",
"libpython2.7": "2.7.17-1~18.04ubuntu1.7",
"libpython2.7-dbg": "2.7.17-1~18.04ubuntu1.7",
"libpython2.7-stdlib": "2.7.17-1~18.04ubuntu1.7",
"python2.7-dev": "2.7.17-1~18.04ubuntu1.7",
"python2.7-examples": "2.7.17-1~18.04ubuntu1.7",
"python2.7-doc": "2.7.17-1~18.04ubuntu1.7",
"python2.7-dbg": "2.7.17-1~18.04ubuntu1.7",
"idle-python2.7": "2.7.17-1~18.04ubuntu1.7",
"libpython2.7-testsuite": "2.7.17-1~18.04ubuntu1.7",
"python2.7-minimal": "2.7.17-1~18.04ubuntu1.7",
"libpython2.7-dev": "2.7.17-1~18.04ubuntu1.7",
"libpython2.7-minimal": "2.7.17-1~18.04ubuntu1.7"
}
]
}
Ubuntu:18.04:LTS / python3.6
Package
- Name
- python3.6
- Purl
- pkg:deb/ubuntu/python3.6@3.6.9-1~18.04ubuntu1.7?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.6.9-1~18.04ubuntu1.7
Affected versions
3.*
3.6.3-1ubuntu1
3.6.4~rc1-1
3.6.4~rc1-2
3.6.4-1
3.6.4-2
3.6.4-3build1
3.6.4-4
3.6.5~rc1-1
3.6.5-3
3.6.6-1~18.04
3.6.7-1~18.04
3.6.8-1~18.04.1
3.6.8-1~18.04.2
3.6.8-1~18.04.3
3.6.9-1~18.04
3.6.9-1~18.04ubuntu1
3.6.9-1~18.04ubuntu1.1
3.6.9-1~18.04ubuntu1.3
3.6.9-1~18.04ubuntu1.4
3.6.9-1~18.04ubuntu1.6
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"python3.6-examples": "3.6.9-1~18.04ubuntu1.7",
"libpython3.6": "3.6.9-1~18.04ubuntu1.7",
"libpython3.6-dbg": "3.6.9-1~18.04ubuntu1.7",
"libpython3.6-stdlib": "3.6.9-1~18.04ubuntu1.7",
"python3.6-venv": "3.6.9-1~18.04ubuntu1.7",
"libpython3.6-minimal": "3.6.9-1~18.04ubuntu1.7",
"python3.6-minimal": "3.6.9-1~18.04ubuntu1.7",
"idle-python3.6": "3.6.9-1~18.04ubuntu1.7",
"python3.6-dbg": "3.6.9-1~18.04ubuntu1.7",
"python3.6": "3.6.9-1~18.04ubuntu1.7",
"python3.6-dev": "3.6.9-1~18.04ubuntu1.7",
"libpython3.6-dev": "3.6.9-1~18.04ubuntu1.7",
"python3.6-doc": "3.6.9-1~18.04ubuntu1.7",
"libpython3.6-testsuite": "3.6.9-1~18.04ubuntu1.7"
}
]
}
Ubuntu:20.04:LTS / python3.8
Package
- Name
- python3.8
- Purl
- pkg:deb/ubuntu/python3.8@3.8.10-0ubuntu1~20.04.4?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.8.10-0ubuntu1~20.04.4
Affected versions
3.*
3.8.0-1
3.8.0-2
3.8.0-3
3.8.0-4
3.8.0-5
3.8.1-2ubuntu3
3.8.2~rc1-1ubuntu1
3.8.2-1
3.8.2-1ubuntu1
3.8.2-1ubuntu1.1
3.8.2-1ubuntu1.2
3.8.5-1~20.04
3.8.5-1~20.04.2
3.8.5-1~20.04.3
3.8.10-0ubuntu1~20.04
3.8.10-0ubuntu1~20.04.1
3.8.10-0ubuntu1~20.04.2
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"libpython3.8": "3.8.10-0ubuntu1~20.04.4",
"libpython3.8-minimal": "3.8.10-0ubuntu1~20.04.4",
"python3.8-dbg": "3.8.10-0ubuntu1~20.04.4",
"python3.8-doc": "3.8.10-0ubuntu1~20.04.4",
"python3.8-minimal": "3.8.10-0ubuntu1~20.04.4",
"libpython3.8-testsuite": "3.8.10-0ubuntu1~20.04.4",
"idle-python3.8": "3.8.10-0ubuntu1~20.04.4",
"libpython3.8-dbg": "3.8.10-0ubuntu1~20.04.4",
"python3.8": "3.8.10-0ubuntu1~20.04.4",
"python3.8-venv": "3.8.10-0ubuntu1~20.04.4",
"python3.8-full": "3.8.10-0ubuntu1~20.04.4",
"python3.8-examples": "3.8.10-0ubuntu1~20.04.4",
"libpython3.8-stdlib": "3.8.10-0ubuntu1~20.04.4",
"python3.8-dev": "3.8.10-0ubuntu1~20.04.4",
"libpython3.8-dev": "3.8.10-0ubuntu1~20.04.4"
}
]
}