FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Python -- multiple vulnerabilities

Affected packages
python38 < 3.8.5

Details

VuXML ID 7d7221ee-d334-11ea-bc50-080027846a02
Discovery 2020-02-11
Entry 2020-07-31

Python reports:

bpo-41304: Fixes python3x._pth being ignored on Windows, caused by the fix for bpo-29778 (CVE-2020-15801).

bpo-39603: Prevent http header injection by rejecting control characters in http.client.putreques().

References

CVE Name CVE-2020-15801
URL https://docs.python.org/3/whatsnew/changelog.html#python-3-8-5-final