From Mageia wiki
MGASA-2012-0208
| Date: | August 12th, 2012 |
| Affected releases: | 2 |
Description:
Updated python3 packages fix security vulnerability:
In the utf-16 decoder after calling unicode_decode_call_errorhandler
aligned_end is not updated. This may potentially cause data leaks,
memory damage, and crash (CVE-2012-2135).
Updated Packages:
lib(64)python3.2-3.2.3-1.3.mga2
lib(64)python3-devel-3.2.3-1.3.mga2
python3-3.2.3-1.3.mga2
python3-docs-3.2.3-1.3.mga2
tkinter3-3.2.3-1.3.mga2
tkinter3-apps-3.2.3-1.3.mga2
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2135
http://lists.opensuse.org/opensuse-updates/2012-07/msg00022.html
https://bugs.mageia.org/show_bug.cgi?id=6759
