Debian Package Tracker
Register | Log in
Subscribe

python2.7

Interactive high-level object-oriented language (version 2.7)

Choose email to subscribe with

general
  • source: python2.7 (main)
  • version: 2.7.18-8
  • maintainer: Matthias Klose (DMD)
  • arch: all any
  • std-ver: 4.5.0
  • VCS: Git (Browse)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 2.7.13-2+deb9u3
  • o-o-sec: 2.7.13-2+deb9u6
  • oldstable: 2.7.16-2+deb10u1
  • stable: 2.7.18-8
versioned links
  • 2.7.13-2+deb9u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 2.7.13-2+deb9u6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 2.7.16-2+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 2.7.18-8: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • idle-python2.7
  • libpython2.7
  • libpython2.7-dbg
  • libpython2.7-dev
  • libpython2.7-minimal
  • libpython2.7-stdlib
  • libpython2.7-testsuite
  • python2.7
  • python2.7-dbg
  • python2.7-dev
  • python2.7-doc
  • python2.7-examples
  • python2.7-minimal
package is gone
This package is not in any development repository. This probably means that the package has been removed (or has been renamed). Thus the information here is of little interest ... the package is going to disappear unless someone takes it over and reintroduces it.
action needed
Debci reports failed tests high
  • unstable: pass (log)
    The tests ran in 0:22:38
    Last run: 2022-12-05T01:43:39.000Z
    Previous status: pass

  • testing: pass (log)
    The tests ran in 0:23:23
    Last run: 2022-11-12T14:06:54.000Z
    Previous status: pass

  • stable: fail (log)
    The tests ran in 0:24:19
    Last run: 2023-03-25T04:50:15.000Z
    Previous status: fail

Created: 2022-03-31 Last update: 2023-03-28 16:33
1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:
  • CVE-2015-20107: In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
Created: 2022-07-04 Last update: 2022-12-08 23:47
1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:
  • CVE-2015-20107: In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
Created: 2022-07-04 Last update: 2022-11-23 05:34
No known security issue in bullseye wishlist

There are 3 open security issues in bullseye.

3 ignored issues:
  • CVE-2021-4189: A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. This vulnerability could lead to FTP client scanning ports, which otherwise would not have been possible.
  • CVE-2015-20107: In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
  • CVE-2021-23336: The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.
Created: 2022-07-04 Last update: 2023-03-27 11:06
news
[rss feed]
  • [2022-12-27] Removed 2.7.18-13.2 from unstable (Debian FTP Masters)
  • [2022-12-09] python2.7 REMOVED from testing (Debian testing watch)
  • [2022-08-03] python2.7 2.7.18-13.2 MIGRATED to testing (Debian testing watch)
  • [2022-08-01] Accepted python2.7 2.7.18-13.2 (source) into unstable (Unit 193)
  • [2022-04-03] python2.7 2.7.18-13.1 MIGRATED to testing (Debian testing watch)
  • [2022-03-31] Accepted python2.7 2.7.18-13.1 (source) into unstable (Anton Gladky)
  • [2022-03-31] Accepted python2.7 2.7.18-13.1~exp1 (source) into experimental (Anton Gladky)
  • [2022-02-24] python2.7 2.7.18-13 MIGRATED to testing (Debian testing watch)
  • [2022-02-22] Accepted python2.7 2.7.18-13 (source) into unstable (Matthias Klose)
  • [2022-02-12] Accepted python2.7 2.7.13-2+deb9u6 (source) into oldoldstable (Anton Gladky)
  • [2022-01-29] python2.7 2.7.18-12 MIGRATED to testing (Debian testing watch)
  • [2022-01-23] Accepted python2.7 2.7.18-12 (source) into unstable (Matthias Klose)
  • [2022-01-21] Accepted python2.7 2.7.18-11 (source) into unstable (Matthias Klose)
  • [2022-01-21] Accepted python2.7 2.7.18-10 (source) into unstable (Matthias Klose)
  • [2021-09-29] python2.7 2.7.18-9 MIGRATED to testing (Debian testing watch)
  • [2021-09-24] Accepted python2.7 2.7.18-9 (source) into unstable (Matthias Klose)
  • [2021-07-19] python2.7 2.7.18-8 MIGRATED to testing (Debian testing watch)
  • [2021-07-14] Accepted python2.7 2.7.18-8 (source) into unstable (Matthias Klose)
  • [2021-05-06] python2.7 2.7.18-7 MIGRATED to testing (Debian testing watch)
  • [2021-04-28] Accepted python2.7 2.7.18-7 (source) into unstable (Matthias Klose)
  • [2021-04-17] Accepted python2.7 2.7.13-2+deb9u5 (source) into oldstable (Anton Gladky)
  • [2021-03-15] python2.7 2.7.18-6 MIGRATED to testing (Debian testing watch)
  • [2021-03-09] Accepted python2.7 2.7.18-6 (source) into unstable (Matthias Klose)
  • [2021-03-09] python2.7 2.7.18-5 MIGRATED to testing (Debian testing watch)
  • [2021-02-27] Accepted python2.7 2.7.18-5 (source) into unstable (Matthias Klose)
  • [2021-02-26] Accepted python2.7 2.7.18-4 (source) into unstable (Matthias Klose)
  • [2021-02-26] Accepted python2.7 2.7.18-3 (source) into unstable (Matthias Klose)
  • [2021-02-20] Accepted python2.7 2.7.18-2 (source) into unstable (Matthias Klose)
  • [2020-08-22] Accepted python2.7 2.7.13-2+deb9u4 (source all amd64) into oldstable (Thorsten Alteholz)
  • [2020-04-23] python2.7 2.7.18-1 MIGRATED to testing (Debian testing watch)
  • 1
  • 2
bugs [bug history graph]
  • all: 0
links
  • buildd: logs, cross
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
  • debci
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 2.7.18-13ubuntu2
  • 48 bugs (1 patch)
  • patches for 2.7.18-13ubuntu2

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing