our Apalis TK1 board is equipped with a Linux image using the default Python 3.5.2.
But it has been discovered that this version has vulnerabilities that block the use of it:
Multiple Vulnerabilities have been found in the dictionary object in Python. Four of them are use-after-frees and one is an array-out-of-bounds indexing bug. In the worst case, an remote attacker could use these flaws to cause a denial of service condition or a remote code execution.
Vendor Affected Components:
Python 2.7.x < 2.7.14 Python 3.3.x < 3.3.7 Python 3.4.x < 3.4.7 Python 3.5.x < 3.5.4 Python 3.6.x < 3.6.2
Is it possible to upgrade to Python 3.5.4?