Python Update for Mandrake Linux
Posted on: 12/11/2002 12:22 PM

MandrakeSoft has released an updated python packages for Mandrake Linux 9.0

A vulnerability was discovered in python by Zack Weinberg in the way that the execvpe() method from the os.py module uses a temporary file name. The file is created in an unsafe manner and execvpe() tries to execute it, which can be used by a local attacker to execute arbitrary code with the privilege of the user running the python code that is using this method.


Read more


Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/python_update_for_mandrake_linux.html)