- Issued:
- 2013-01-07
- Updated:
- 2013-01-07
RHBA-2013:0020 - m2crypto bug fix and enhancement update
Synopsis
m2crypto bug fix and enhancement update
Type/Severity
Bug Fix Advisory (none)
Topic
Updated m2crypto packages that fix one bug and add one enhancement are now available for Red Hat Enterprise Linux 5.
Description
The m2crypto library allows Python programs to call OpenSSL functions.
This update fixes the following bug:
- M2Crypto generated an invalid exception object on SSL timeouts, causing an IndexError in the Python httplib module. This made it impossible to correctly handle SSL timeouts in applications. This updated package adds the required attributes to the SSL timeout exception object and lets httplib process this information correctly. (BZ#520817)
This update also adds the following enhancement:
- The M2Crypto.httpslib.HTTPSConnection class always created an IPv4 socket. This made it impossible to connect to IPv6 servers using this class. With this update, the implementation now correctly creates an IPv4 or IPv6 socket, as necessary, thus adding support for IPv6 servers. (BZ#761596)
All users of m2crypto are advised to upgrade to these updated packages, which fix this bug and add this enhancement.
Solution
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux for Power, big endian | 5 | ppc |
| Red Hat Enterprise Linux for IBM z Systems | 5 | s390x |
| Red Hat Enterprise Linux Workstation | 5 | x86_64 |
| Red Hat Enterprise Linux Workstation | 5 | i386 |
| Red Hat Enterprise Linux Server | 5 | x86_64 |
| Red Hat Enterprise Linux Server | 5 | ia64 |
| Red Hat Enterprise Linux Server | 5 | i386 |
| Red Hat Enterprise Linux Server from RHUI | 5 | x86_64 |
| Red Hat Enterprise Linux Server from RHUI | 5 | i386 |
| Red Hat Enterprise Linux Desktop | 5 | x86_64 |
| Red Hat Enterprise Linux Desktop | 5 | i386 |
Updated Packages
- m2crypto-debuginfo-0.16-9.el5.s390x.rpm
- m2crypto-0.16-9.el5.src.rpm
- m2crypto-0.16-9.el5.x86_64.rpm
- m2crypto-debuginfo-0.16-9.el5.ia64.rpm
- m2crypto-0.16-9.el5.ia64.rpm
- m2crypto-0.16-9.el5.i386.rpm
- m2crypto-debuginfo-0.16-9.el5.ppc.rpm
- m2crypto-debuginfo-0.16-9.el5.x86_64.rpm
- m2crypto-0.16-9.el5.s390x.rpm
- m2crypto-0.16-9.el5.ppc.rpm
- m2crypto-debuginfo-0.16-9.el5.i386.rpm
Fixes
(none)
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.