Python-urllib3 CVE-2023-45803 Patch

Today, we focus on deploying a patch released by Ubuntu on November 7, 2023 for Python-urllib3 on Ubuntu.

To check if this patch is relevant to you:

• Confirm that your machine is running Ubuntu as its operating system.
• Verify that the operating system version is either 16, 18, 20, 22, or 23.
• Check that the vulnerable version (depending on your operating system and version) of Python-urllib3 is installed on your machine.

For further information and support related to this patch, please refer to the official ubuntu support page.

Patch Details

Patch Deployment with SecOps Patch Management

Manual Patch deployment

1. Download the package update from Ubuntu's official repository.
2. Utilise dpkg for installing the package update onto your system.

   OR

1. If your system allows outbound HTTP/HTTPS connectivity:some text
   1. Use the command apt-get install --only-upgrade python3-urllib3 to update the Python-urllib3 package.
2. After updating, to verify the package version, use the following command: dpkg-query -W -f='${Version}' "python3-urllib3".
3. If the displayed version matches the latest one, it confirms the successful application of the patch on your system.

Important Note:

1. There are several key things to remember while deploying a patch. It is crucial to download the correct patch file that has been released for your system’s architecture, Operating System, and Build Version
2. It is crucial that you follow the right process or supply the correct commands while installing the patch
3. Understand if the patch requires a reboot of the system or not. If yes make sure to perform a reboot securely to avoid system corruption

SecOps Solution is an award-winning agent-less Full-stack Vulnerability and Patch Management Platform that helps organizations identify, prioritize and remediate security vulnerabilities and misconfigurations in seconds.

To schedule a demo, just pick a slot that is most convenient for you.