Updated python3 packages fix security vulnerability
Publication date: 18 Apr 2021Modification date: 18 Apr 2021
Type: security
Affected Mageia releases : 7 , 8
CVE: CVE-2021-3426
Description
There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to access. The highest risk of this flaw is to data confidentiality (CVE-2021-3426).
References
SRPMS
8/core
- python3-3.8.9-1.mga8
7/core
- python3-3.7.10-1.1.mga7