ProHoster > ื‘ืœื•ื’ > ื—ื“ืฉื•ืช ื‘ืื™ื ื˜ืจื ื˜ > ืขื“ื›ื•ืŸ Python 3.8.5 ืขื ืคื’ื™ืขื•ื™ื•ืช ืฉืชื•ืงื ื•

ืขื“ื›ื•ืŸ Python 3.8.5 ืขื ืคื’ื™ืขื•ื™ื•ืช ืฉืชื•ืงื ื•

ะžะฟัƒะฑะปะธะบะพะฒะฐะฝะพ ืขื“ื›ื•ืŸ ืžืชืงืŸ ืฉืœ ืฉืคืช ื”ืชื›ื ื•ืช Python 3.8.5, ืฉื‘ื” ื—ื•ืกืœื• ืžืกืคืจ ื ืงื•ื“ื•ืช ืชื•ืจืคื”:

  • CVE-2019-20907 - ืœื•ืœืื” ืฉืœ ืžื•ื“ื•ืœ tarfile ื›ืืฉืจ ืžื ืกื™ื ืœืคืชื•ื— ืงื‘ืฆื™ื ืฉืขื•ืฆื‘ื• ื‘ืžื™ื•ื—ื“ ื‘ืคื•ืจืžื˜ tar.
  • BPO-41288 - ืงืจื™ืกื” ื›ืืฉืจ ืžื•ื“ื•ืœ Pickle ืžื ืกื” ืœืขื‘ื“ ืื•ื‘ื™ื™ืงื˜ื™ื ืขื ืงื•ื“ ืื•ืคืฆื™ื” ืฉืชื•ื›ื ืŸ ื‘ืžื™ื•ื—ื“ NEWOBJ_EX.
  • CVE-2020-15801 - ื”ื™ื›ื•ืœืช ืœื”ื—ืœื™ืฃ ืืช ื›ื•ืชืจื•ืช ื”-HTTP ื‘ื‘ืงืฉื” ื‘ืืžืฆืขื•ืช ืฉื™ืžื•ืฉ ื‘ืชื•ื•ื™ ืฉื•ืจื” ื—ื“ืฉื” ื‘ืคืจืžื˜ืจ "ืฉื™ื˜ื”" ืฉืœ ืžื•ื“ื•ืœ http.client. ืœื“ื•ื’ืžื”: conn.request(method=โ€GET / HTTP/1.1\r\nืžืืจื—: abc\r\nืฉืืจื™ืช:โ€, url=โ€/index.htmlโ€). ื”ืคื’ื™ืขื•ืช ืชื•ืงื ื” ื‘ืขื‘ืจ, ืืš ืœื ื›ื™ืกืชื” ืืช ื”ืื‘ื˜ื—ื” ืฉืœ ืฉื™ื˜ืช http.client.putrequest.

ืžืงื•ืจ: OpenNet.ru

ื”ื•ืกืคืช ืชื’ื•ื‘ื”