Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » RHBA-2013:0020-01

Overview

Id RHBA-2013:0020-01
Name Red Hat 2013:0020-01 RHBA m2crypto bug fix and enhancement update for RHEL 5 x86
Vendor Name red_hat
Product None
Content Type Recommended Recommended
Language(s)
Operating System(s) Linux 
Released On 07 Jan 2013 12:00:00

RHBA-2013:0020-01

Red Hat 2013:0020-01 RHBA m2crypto bug fix and enhancement update for RHEL 5 x86

Vendor Name

red_hat

Product

None

Released On

07 Jan 2013 12:00:00

Url

https://rhn.redhat.com/errata/RHBA-2013-0020.html

Description

LSAC(v2)
The m2crypto library allows Python programs to call OpenSSL functions. This update fixes the following bug: * M2Crypto generated an invalid exception object on SSL timeouts, causing an IndexError in the Python httplib module. This made it impossible to correctly handle SSL timeouts in applications. This updated package adds the required attributes to the SSL timeout exception object and lets httplib process this information correctly. (BZ#520817) This update also adds the following enhancement: * The M2Crypto.httpslib.HTTPSConnection class always created an IPv4 socket. This made it impossible to connect to IPv6 servers using this class. With this update, the implementation now correctly creates an IPv4 or IPv6 socket, as necessary, thus adding support for IPv6 servers. (BZ#761596) All users of m2crypto are advised to upgrade to these updated packages, which fix this bug and add this enhancement.

Related Resources

Related Vulnerabilities

None

Related Patches

None

Superseded Patches

None


Last Updated: 27 May 2016 11:16:12