Red Hat Product Errata RHSA-2020:0195 - Security Advisory

Issued:: 2020-01-21
Updated:: 2020-01-21

RHSA-2020:0195 - Security Advisory

Overview
Updated Packages

Synopsis

Important: python-reportlab security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for python-reportlab is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Python-reportlab is a library used for generation of PDF documents.

Security Fix(es):

python-reportlab: code injection in colors.py allows attacker to execute code (CVE-2019-17626)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
Red Hat Enterprise Linux Server - AUS 7.7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7 ppc64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7 ppc64le
Red Hat Enterprise Linux Server - TUS 7.7 x86_64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.7 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.7 x86_64

Fixes

BZ - 1769661 - CVE-2019-17626 python-reportlab: code injection in colors.py allows attacker to execute code

CVEs

CVE-2019-17626

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

Red Hat Enterprise Linux Server - AUS 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

Red Hat Enterprise Linux Workstation 7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

Red Hat Enterprise Linux Desktop 7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
s390x
python-reportlab-2.5-9.el7_7.1.s390x.rpm	SHA-256: 882de8ec90314086cc45bed58fae46735621af3ef03eda69881438fa30a62421
python-reportlab-debuginfo-2.5-9.el7_7.1.s390x.rpm	SHA-256: d03bec77816c7e1f51053b032d8261a31fa30274bafd1618915d6b3752adfec4
python-reportlab-debuginfo-2.5-9.el7_7.1.s390x.rpm	SHA-256: d03bec77816c7e1f51053b032d8261a31fa30274bafd1618915d6b3752adfec4
python-reportlab-docs-2.5-9.el7_7.1.s390x.rpm	SHA-256: e1fce0ccfe3af28848a6f6083412979071b88f01fa8c941819c06906f7e41ae9

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
s390x
python-reportlab-2.5-9.el7_7.1.s390x.rpm	SHA-256: 882de8ec90314086cc45bed58fae46735621af3ef03eda69881438fa30a62421
python-reportlab-debuginfo-2.5-9.el7_7.1.s390x.rpm	SHA-256: d03bec77816c7e1f51053b032d8261a31fa30274bafd1618915d6b3752adfec4
python-reportlab-debuginfo-2.5-9.el7_7.1.s390x.rpm	SHA-256: d03bec77816c7e1f51053b032d8261a31fa30274bafd1618915d6b3752adfec4
python-reportlab-docs-2.5-9.el7_7.1.s390x.rpm	SHA-256: e1fce0ccfe3af28848a6f6083412979071b88f01fa8c941819c06906f7e41ae9

Red Hat Enterprise Linux for Power, big endian 7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
ppc64
python-reportlab-2.5-9.el7_7.1.ppc64.rpm	SHA-256: 752954e9e4485559908198b6a26e6d0fafc5810c3e1439c0f469b1f38de262eb
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64.rpm	SHA-256: f3ff5a2211206d49759f76d193007a25f8599cbc1f26da3b59b28c33568c7d63
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64.rpm	SHA-256: f3ff5a2211206d49759f76d193007a25f8599cbc1f26da3b59b28c33568c7d63
python-reportlab-docs-2.5-9.el7_7.1.ppc64.rpm	SHA-256: a45d5d4e78e05d248da714497d23863c1355a423ff5df8295f2c50ea2fcf87c7

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
ppc64
python-reportlab-2.5-9.el7_7.1.ppc64.rpm	SHA-256: 752954e9e4485559908198b6a26e6d0fafc5810c3e1439c0f469b1f38de262eb
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64.rpm	SHA-256: f3ff5a2211206d49759f76d193007a25f8599cbc1f26da3b59b28c33568c7d63
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64.rpm	SHA-256: f3ff5a2211206d49759f76d193007a25f8599cbc1f26da3b59b28c33568c7d63
python-reportlab-docs-2.5-9.el7_7.1.ppc64.rpm	SHA-256: a45d5d4e78e05d248da714497d23863c1355a423ff5df8295f2c50ea2fcf87c7

Red Hat Enterprise Linux for Power, little endian 7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
ppc64le
python-reportlab-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: bcdfbae460b4fffabf0b6a062ca557dfa1e23e89a1c5fb55196e6db6540fa18c
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 059629ebfd2f27f7f16da696a466adde4246688b5aeee61a237947d0622d85b8
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 059629ebfd2f27f7f16da696a466adde4246688b5aeee61a237947d0622d85b8
python-reportlab-docs-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 2e90503aaf053ef48dce22e41d0b9b77f34bf231191461fb3838a06339fcf402

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
ppc64le
python-reportlab-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: bcdfbae460b4fffabf0b6a062ca557dfa1e23e89a1c5fb55196e6db6540fa18c
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 059629ebfd2f27f7f16da696a466adde4246688b5aeee61a237947d0622d85b8
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 059629ebfd2f27f7f16da696a466adde4246688b5aeee61a237947d0622d85b8
python-reportlab-docs-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 2e90503aaf053ef48dce22e41d0b9b77f34bf231191461fb3838a06339fcf402

Red Hat Enterprise Linux Server - TUS 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
ppc64le
python-reportlab-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: bcdfbae460b4fffabf0b6a062ca557dfa1e23e89a1c5fb55196e6db6540fa18c
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 059629ebfd2f27f7f16da696a466adde4246688b5aeee61a237947d0622d85b8
python-reportlab-debuginfo-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 059629ebfd2f27f7f16da696a466adde4246688b5aeee61a237947d0622d85b8
python-reportlab-docs-2.5-9.el7_7.1.ppc64le.rpm	SHA-256: 2e90503aaf053ef48dce22e41d0b9b77f34bf231191461fb3838a06339fcf402

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.7

SRPM
python-reportlab-2.5-9.el7_7.1.src.rpm	SHA-256: 4e228c8c248af8feb3c38a55a42285c07ffcb9a5538594295339afde98ae71a1
x86_64
python-reportlab-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 4ff96b306b66f15122f713c25b18a48e2b20a9297db91507002497d7805ed23d
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-debuginfo-2.5-9.el7_7.1.x86_64.rpm	SHA-256: ca22dcb274ad695c4b8139972909604773c03e2aad7d187ab80521d4f0c1102b
python-reportlab-docs-2.5-9.el7_7.1.x86_64.rpm	SHA-256: 3185b96e9ecc2da3a81c4da9b99469b8535e55b0e245b0a634d92b8d158e343a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation