Ubuntu Update For Python2.6 USN-1982-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Ryan Sleevi discovered that Python did not properly handle certificates with NULL characters in the Subject Alternative Name field. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.

Affected

python2.6 on Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2013-4238
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for aptdaemon vulnerability USN-1068-1
Ubuntu Update for clamav USN-1482-2
Ubuntu Update for apt USN-1762-1
Ubuntu Update for cinder USN-1731-1
Ubuntu Update for clamav USN-1482-3

Ubuntu Update for python2.6 USN-1982-1

Take action and discover your vulnerabilities