Amazon Linux 1 Security Advisory: ALAS-2017-801
Advisory Release Date: 2017-03-06 14:00 Pacific
Advisory Updated Date: 2017-03-06 14:00 Pacific
A heap-buffer overflow vulnerability was discovered in cryptopp. This vulnerability can be used to remotely gain access to shell.
Affected Packages:
python-crypto
Issue Correction:
Run yum update python26-crypto and/or yum update python27-crypto to update your system.
i686:
python26-crypto-2.6.1-1.14.amzn1.i686
python-crypto-debuginfo-2.6.1-1.14.amzn1.i686
python27-crypto-2.6.1-1.14.amzn1.i686
src:
python-crypto-2.6.1-1.14.amzn1.src
x86_64:
python26-crypto-2.6.1-1.14.amzn1.x86_64
python27-crypto-2.6.1-1.14.amzn1.x86_64
python-crypto-debuginfo-2.6.1-1.14.amzn1.x86_64