[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 4809-1] python-apt security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4809-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
December 09, 2020                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : python-apt
CVE ID         : CVE-2020-27351

Various memory and file descriptor leaks were discovered in the Python
interface to the APT package management runtime library, which could
result in denial of service.

For the stable distribution (buster), this problem has been fixed in
version 1.8.4.2.

We recommend that you upgrade your python-apt packages.

For the detailed security status of python-apt please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/python-apt

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=TeSG
-----END PGP SIGNATURE-----


Reply to: