AIX Open Source

AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system

 View Only
  • 1.  Python 2, CVE

    Posted Fri May 08, 2020 09:17 AM

    Originally posted by: 828U_Chris_High


    Python 2.7.17 has a security advisory:

    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8492
    https://nvd.nist.gov/vuln/detail/CVE-2020-8492
    Please update to Python 2.7.18.  This appears to resolve the exposure.  It also appears to be the last planned release in the 2.7.xx series.

    I hope the team is also looking at yum, and what we need to do to get off the dependency of having Python 2.x installed.



  • 2.  Re: Python 2, CVE

    Posted Fri May 08, 2020 09:41 AM

    Originally posted by: AyappanP


    We are already working on 2.7.18 release. It will be uploaded to Toolbox soon.

    Yes, we are moving to dnf which is python3 based.