USN-4333-1 fixed vulnerabilities in Python. This update provides the corresponding update for Ubuntu 20.04 LTS.
Original advisory details:
It was discovered that Python incorrectly stripped certain characters from requests. A remote attacker could use this issue to perform CRLF injection. (CVE-2019-18348)
It was discovered that Python incorrectly handled certain HTTP requests. An attacker could possibly use this issue to cause a denial of service. (CVE-2020-8492)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "idle-python3.8" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "libpython3.8" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "libpython3.8-dbg" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "libpython3.8-dev" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "libpython3.8-minimal" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "libpython3.8-stdlib" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "libpython3.8-testsuite" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8-dbg" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8-dev" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8-doc" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8-examples" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8-minimal" }, { "binary_version": "3.8.2-1ubuntu1.1", "binary_name": "python3.8-venv" } ] }