Update packages to fix CVE-2021-3177

[mssalvatore]

CVE-2021-3177 is a buffer overflow in the ctypes PyCArg_repr() function. NIST has given it a CVSS score of 9.8 (critical). It has been fixed in the following python versions:

• Python 3.6.13 (2021-02-16) fixed by commit 34df10a (branch 3.6) (2021-01-18)
• Python 3.7.10 (2021-02-16) fixed by commit d9b8f13 (branch 3.7) (2021-01-18)
• Python 3.8.8 (2021-02-19) fixed by [commit ece5dfd (branch 3.8)](commit ece5dfd (branch 3.8)) (2021-01-18)
• Python 3.9.2 (2021-02-19) fixed by [commit c347cbe (branch 3.9)](commit c347cbe (branch 3.9)) (2021-01-18)

Please consider providing updated AppImages that do not contain this vulnerability.

For more information, see https://python-security.readthedocs.io/vuln/ctypes-buffer-overflow-pycarg_repr.html

[niess]

Hello. Thank your for reporting this. Actually the problem is more general. Since 4 months the cron builds on GitHub CI are failing. Yet I didn't notice it so far :(

The reason seem to be an incompatibility between appimagetool and manylinux2010 and/or i686. E.g.:

appimagetool: /lib/libc.so.6: version `GLIBC_2.17' not found (required by /root/.local/bin/.appimagetool.appdir/usr/lib/libglib-2.0.so.0)

I will investigate this.

[niess]

@mssalvatore The AppImages have been updated. The latest manylinux images are available from the release area. The problem was that appimagetool does no more run on manylinux2010.

Thanks for reporting this issue.

[mssalvatore]

@niess Thanks for taking care of this so quickly!