Python 3.8.5 ntjhafatso e nang le bofokoli bo tsitsitseng
E hatisitsoe ho ntlafatso ea ntlafatso ea puo ea lenaneo la Python 3.8.5, eo ho eona felisitsoe bofokoli bo bongata:
CVE-2019-20907 - tarfile module ea looping ha u leka ho bula lifaele tse entsoeng ka mokhoa o khethehileng ka sebopeho sa tar.
BPO-41288 - senyeha ha mojule oa Pickle o leka ho sebetsana le lintho ka opcode e etselitsoeng ka ho khetheha NEWOBJ_EX.
CVE-2020-15801 - bokhoni ba ho kenya lihlooho tsa HTTP sebakeng sa kopo ka ho sebelisa litlhaku tse ncha ho "mokhoa" oa parameter ea http.client module. Mohlala: conn.request(mokgwa=”GET / HTTP/1.1\r\nHost: abc\r\nRemainder:”, url=”/index.html”). Likotsi li ne li lokisitsoe, empa ha lia ka tsa koahela http.client.putrequest mokhoa tshireletso.