فا

‫ SUSE update for python-rope

ID: IRCAD2015033798
Release Date: 2015-03-04
Criticality level: Highly critical
Software:
openSUSE 13.1
Description:
SUSE has issued an update for python-rope. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to an error within the "receive_data()" function (rope/base/oi/doa.py), which can be exploited to inject and execute arbitrary Python code.
Solution
Apply updated packages via Launchpad.
- openSUSE 13.2:
zypper in -t patch openSUSE-2015-190=1
- openSUSE 13.1:
zypper in -t patch openSUSE-2015-190=1
References:
openSUSE-SU-2015:0413-1:
Kurt Seifried:
Python-rope:
Secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

مشخصات خبر

 
تاریخ ایجاد: 3 فروردین 1394

امتیاز

امتیاز شما
تعداد امتیازها: 0