[SECURITY] Fedora 23 Update: python-pymongo-2.5.2-8.fc23
updates at fedoraproject.org
updates at fedoraproject.org
Fri Feb 12 11:56:22 UTC 2016
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2016-50abc3e885
2016-02-12 07:47:46.246491
--------------------------------------------------------------------------------
Name : python-pymongo
Product : Fedora 23
Version : 2.5.2
Release : 8.fc23
URL : http://api.mongodb.org/python
Summary : Python driver for MongoDB
Description :
The Python driver for MongoDB.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2013-2099, CVE-2013-7440
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1224999 - CVE-2013-7440 python: wildcard matching rules do not follow RFC 6125
https://bugzilla.redhat.com/show_bug.cgi?id=1224999
[ 2 ] Bug #963260 - CVE-2013-2099 python: ssl.match_hostname() DoS via certificates with specially crafted hostname wildcard patterns
https://bugzilla.redhat.com/show_bug.cgi?id=963260
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-pymongo' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list