Synopsis
Important: python-tornado security update
Type/Severity
Security Advisory: Important
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
View affected systems
Topic
An update for python-tornado is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
Tornado is a Python web framework and asynchronous networking library that provides an open source version of scalable, non-blocking web server and tools.
Security Fix(es):
- python-tornado: Tornado has HTTP cookie parsing DoS vulnerability (CVE-2024-52804)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Products
-
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2 x86_64
-
Red Hat Enterprise Linux Server - AUS 9.2 x86_64
-
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2 s390x
-
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2 ppc64le
-
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2 aarch64
-
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
-
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
-
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
-
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x
-
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64
-
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64
-
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le
-
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x
Fixes
-
BZ - 2328045
- CVE-2024-52804 python-tornado: Tornado has HTTP cookie parsing DoS vulnerability
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| x86_64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: e6b8d63f70d573d0d1d724a1e425d783abce7a8828bcd337b0558dca07364a09 |
|
python3-tornado-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: fcc894086aadfe32ddd9c0f3a116798670d3d9142247d441eccbc4341e2dca57 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: 6e9add0c4f342959ab1f0619f4d32bcecc7ef6b0c15232245084eb6dd09db414 |
Red Hat Enterprise Linux Server - AUS 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| x86_64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: e6b8d63f70d573d0d1d724a1e425d783abce7a8828bcd337b0558dca07364a09 |
|
python3-tornado-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: fcc894086aadfe32ddd9c0f3a116798670d3d9142247d441eccbc4341e2dca57 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: 6e9add0c4f342959ab1f0619f4d32bcecc7ef6b0c15232245084eb6dd09db414 |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| s390x |
|
python-tornado-debugsource-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 68d69ca95341cf138d9c770eb04bd64161d203e22aa2f507f4206260293daf95 |
|
python3-tornado-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 7140bdcbed6da4d6dc7df7365f57fec447b1f050523ebb41fbec631e6c678975 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 406a4da1f986c9f37fd87bab1e6c92e4df5d41cc27c951bfb24fdfd9b58f2644 |
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| ppc64le |
|
python-tornado-debugsource-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 63d6a2aa037077a223e44d3d86d43747704334fd4d5357be16acc6d6b790ea60 |
|
python3-tornado-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 70a2afa53a40066d37375efdb8332cc799bc2545a159d3bb557aba34be0b6aed |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 04a9ba1397b444571c141b4189ba4f787b81aa23c55db9d47a77dc8b4804dba5 |
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| aarch64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: 54ae5bbd8b4f910e19fc873b9bcff7613bc3224e937e6841aa479efeed6c0617 |
|
python3-tornado-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: 416068f684820c96bd0d1fa21bc1de6fdc9d529c75ac8735a9ec376ce23240b1 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: c0e152fc336ecb4d05c63542d0d944f7807cb58216aadcb629fe7d28d4719e0c |
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| ppc64le |
|
python-tornado-debugsource-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 63d6a2aa037077a223e44d3d86d43747704334fd4d5357be16acc6d6b790ea60 |
|
python3-tornado-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 70a2afa53a40066d37375efdb8332cc799bc2545a159d3bb557aba34be0b6aed |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 04a9ba1397b444571c141b4189ba4f787b81aa23c55db9d47a77dc8b4804dba5 |
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| x86_64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: e6b8d63f70d573d0d1d724a1e425d783abce7a8828bcd337b0558dca07364a09 |
|
python3-tornado-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: fcc894086aadfe32ddd9c0f3a116798670d3d9142247d441eccbc4341e2dca57 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: 6e9add0c4f342959ab1f0619f4d32bcecc7ef6b0c15232245084eb6dd09db414 |
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| aarch64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: 54ae5bbd8b4f910e19fc873b9bcff7613bc3224e937e6841aa479efeed6c0617 |
|
python3-tornado-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: 416068f684820c96bd0d1fa21bc1de6fdc9d529c75ac8735a9ec376ce23240b1 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: c0e152fc336ecb4d05c63542d0d944f7807cb58216aadcb629fe7d28d4719e0c |
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| s390x |
|
python-tornado-debugsource-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 68d69ca95341cf138d9c770eb04bd64161d203e22aa2f507f4206260293daf95 |
|
python3-tornado-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 7140bdcbed6da4d6dc7df7365f57fec447b1f050523ebb41fbec631e6c678975 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 406a4da1f986c9f37fd87bab1e6c92e4df5d41cc27c951bfb24fdfd9b58f2644 |
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| x86_64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: e6b8d63f70d573d0d1d724a1e425d783abce7a8828bcd337b0558dca07364a09 |
|
python3-tornado-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: fcc894086aadfe32ddd9c0f3a116798670d3d9142247d441eccbc4341e2dca57 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.x86_64.rpm
|
SHA-256: 6e9add0c4f342959ab1f0619f4d32bcecc7ef6b0c15232245084eb6dd09db414 |
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| aarch64 |
|
python-tornado-debugsource-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: 54ae5bbd8b4f910e19fc873b9bcff7613bc3224e937e6841aa479efeed6c0617 |
|
python3-tornado-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: 416068f684820c96bd0d1fa21bc1de6fdc9d529c75ac8735a9ec376ce23240b1 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.aarch64.rpm
|
SHA-256: c0e152fc336ecb4d05c63542d0d944f7807cb58216aadcb629fe7d28d4719e0c |
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| ppc64le |
|
python-tornado-debugsource-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 63d6a2aa037077a223e44d3d86d43747704334fd4d5357be16acc6d6b790ea60 |
|
python3-tornado-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 70a2afa53a40066d37375efdb8332cc799bc2545a159d3bb557aba34be0b6aed |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.ppc64le.rpm
|
SHA-256: 04a9ba1397b444571c141b4189ba4f787b81aa23c55db9d47a77dc8b4804dba5 |
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2
| SRPM |
|
python-tornado-6.4.2-1.el9_2.src.rpm
|
SHA-256: 147e9ef535f58b09d6f51c35e94ad9c4237b0701eb3e40c82b6e3f9708393f67 |
| s390x |
|
python-tornado-debugsource-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 68d69ca95341cf138d9c770eb04bd64161d203e22aa2f507f4206260293daf95 |
|
python3-tornado-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 7140bdcbed6da4d6dc7df7365f57fec447b1f050523ebb41fbec631e6c678975 |
|
python3-tornado-debuginfo-6.4.2-1.el9_2.s390x.rpm
|
SHA-256: 406a4da1f986c9f37fd87bab1e6c92e4df5d41cc27c951bfb24fdfd9b58f2644 |
