MGASA-2021-0193

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2021-3426

Published: 18 Apr 2021, 18:34

Last modified:16 Apr 2026, 04:25

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

18 Apr 2021, 18:34

Published

Vulnerability first disclosed

16 Apr 2026, 04:25

Last Modified

Vulnerability information updated

Description

Updated python3 packages fix security vulnerability There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to access. The highest risk of this flaw is to data confidentiality (CVE-2021-3426).

Affected Systems

mageia•python3
< 3.7.10-1.1.mga7
mageia•python3
< 3.8.9-1.mga8

References (4)

https://advisories.mageia.org/MGASA-2021-0193.html
https://bugs.mageia.org/show_bug.cgi?id=28729
https://bugs.python.org/issue42988
https://bugzilla.redhat.com/show_bug.cgi?id=1935913