=== chris14_ is now known as chris14
=== esv_ is now known as esv
[15:14] <Nick55> Hi All, I was installed Ubuntu 22.04.3 LTS and checking which version of python is installed, I see python2 and python3 are installed. can some one help me to understand.
[15:14] <Nick55> when I scan security vulnerability I found out "libpython2.7-minimal_2.7.18-13ubuntu1.1", python2.7.18-3,  are vulnerable and I run this command 'apt list python2 -a" output python2/jammy, now 2.7.18-3 amd64 (installed)  and python2/jammy 2.7.18-3 i386.
[16:31] <ravage> Nick55: https://ubuntu.com/security/cves
[16:31] <ravage> Just check against that 
[16:32] <ravage> I'm pretty sure there are no open security issues in 22.04 for the python packages 
[16:53] <Nick55> Hi ravage : thank you and I just check the CVE ID -->CVE-2021-4189
[16:53] -ubottu:#ubuntu-server- A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. This vulnerability could lead... <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189>
[18:19] <Nick55> Hi ravage : thank you and I just check the CVE ID -->CVE-2021-4189
[18:19] -ubottu:#ubuntu-server- A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. This vulnerability could lead... <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189>
[18:19] <Nick55> Hi ravage : thank you and I just check the CVE ID, CVE-2021-4189
=== Adri2000_ is now known as Adri2000