CLSA-2021-1634925483

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2021-1634925483

Upstream

CVE-2018-20852

CVE-2020-26116

CVE-2020-27619

CVE-2020-8492

Published

2021-10-22T17:58:03Z

Modified

2026-06-01T00:33:24.353200397Z

Summary

Fixed CVEs in python: CVE-2018-20852, CVE-2020-8492, CVE-2020-26116, CVE-2020-27619

Details

Add Oracle Linux distribution in platform.py
CVE-2018-20852: Prefix dot in domain for proper subdomain validation
CVE-2020-8492: Python allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client
CVE-2020-26116: http.client allows CRLF injection if the attacker controls the HTTP request method
CVE-2020-27619: Unsafe use of eval() on data retrieved via HTTP in the test suite

References

https://errata.cloudlinux.com/ol6/CLSA-2021-1634925483.html

Affected packages

TuxCare:OracleLinux:6

python

Package

Name: python
Purl: pkg:rpm/tuxcare/python?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6.6-70.el6.cloudlinux.els

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json"

python-devel

Package

Name: python-devel
Purl: pkg:rpm/tuxcare/python-devel?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6.6-70.el6.cloudlinux.els

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json"

python-libs

Package

Name: python-libs
Purl: pkg:rpm/tuxcare/python-libs?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6.6-70.el6.cloudlinux.els

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json"

python-test

Package

Name: python-test
Purl: pkg:rpm/tuxcare/python-test?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6.6-70.el6.cloudlinux.els

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json"

python-tools

Package

Name: python-tools
Purl: pkg:rpm/tuxcare/python-tools?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6.6-70.el6.cloudlinux.els

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json"

tkinter

Package

Name: tkinter
Purl: pkg:rpm/tuxcare/tkinter?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6.6-70.el6.cloudlinux.els

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2021-1634925483.json"