As part of our Enterprise offering, ActiveState continues to be the only commercial vendor that maintains a current version of Python 2. The latest release, 2.7.18.8 is now generally available.
This is both a feature release and a content release that provides support for Linux builds using Glibc 2.17 and/or 2.28, and also adds support for Windows 64 bit.
Python Core CVEs Addressed
Language Core: Python Core (Cpython)
Versions Impacted: Python versions 2.7.18.7 and prior
Severity: Critical
URL: CVE-2022-48565
Language Core: Python Core (Cpython)
Versions Impacted: Python versions 2.7.18.7 and prior
Severity: High
URL: CVE-2023-24329
Language Core: Python Core (Cpython)
Versions Impacted: Python versions 2.7.18.7 and prior
Severity: Medium
URL: CVE-2023-40217
Updated Python Package CVEs
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Critical
URL: CVE-2022-22817
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Critical
URL: CVE-2022-24303
Package: pillow
Versions Impacted: 6.2.2.5
Severity: High
URL: 2020-10379
Package: gevent
Versions Impacted: 1.3.2.post0
Severity: Critical
URL: CVE-2023-41419
Package: mako
Versions Impacted: 1.1.6
Severity: High
URL: CVE-2022-40023
Package: twisted
Versions Impacted: 20.3.0.1
Severity: High
URL: CVE-2022-21712
Package: twisted
Versions Impacted: 20.3.0.1
Severity: High
URL: CVE-2022-24801
Package: twisted
Versions Impacted: 20.3.0.1
Severity: Medium
URL: CVE-2022-39348
Package: cryptography
Versions Impacted: 3.3.2
Severity: Medium
URL: CVE-2023-23931
Package: cryptography
Versions Impacted: 3.3.2
Severity: High
URL: CVE-2023-49083
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Medium
URL: CVE-2020-10177
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Medium
URL: CVE-2020-10378
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Medium
URL: CVE-2020-10994
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Medium
URL: CVE-2020-35655
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Medium
URL: CVE-2021-25292
Package: pillow
Versions Impacted: 6.2.2.5
Severity: Medium
URL: CVE-2021-28678
Package: pygments
Versions Impacted: 2.5.2.1
Severity: Medium
URL: CVE-2022-40896
Package: tornado
Versions Impacted: 5.1.1
Severity: Medium
URL: CVE-2023-28370
Updated Libraries CVEs
Package: zlib
Versions Impacted: 1.2.12.1
Severity: Critical
URL: CVE-2023-45853
Package: expat
Versions Impacted: 2.5.0
Severity: High
URL: CVE-2023-52425
Package: expat
Versions Impacted: 2.5.0
Severity: Medium
URL: CVE-2023-52426
Package: libxslt
Versions Impacted: 1.1.34
Severity: High
URL: CVE-2021-30560
Package: libxslt
Versions Impacted: 1.1.34
Severity: Medium
URL: CVE-2022-29824
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2020-7595
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2021-3517
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2021-3518
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2019-20388
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2022-23308
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2022-40303
Package: libxml2
Versions Impacted: 2.9.10
Severity: High
URL: CVE-2022-40304
Package: libxml2
Versions Impacted: 2.11.5
Severity: Medium
URL: CVE-2023-45322
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2016-3709
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2021-3537
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2021-3541
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2020-24977
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2022-29824
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2023-28484
Package: libxml2
Versions Impacted: 2.9.10
Severity: Medium
URL: CVE-2023-29469