SUSE-SU-2024:1847-1 -- SLES python36, libpython3_6m1_0ID: oval:org.secpod.oval:def:89051918 | Date: (C)2024-06-18 (M)2024-06-19 |
Class: PATCH | Family: unix |
This update for python36 fixes the following issues: * CVE-2023-52425: Fixed backport so it uses features sniffing, not just comparing version number . * CVE-2024-0450: Fixed detecting the vulnerability of "quoted-overlap" zipbomb . * CVE-2023-6597: Fixed symlink bug in cleanup of tempfile.TemporaryDirectory . * CVE-2022-48566: Fixed compare_digest constant-time . Bug fixes: * Fixed syslog making default "ident from sys.argv[0] .
Platform: |
SUSE Linux Enterprise Server 12 SP5 |
Product: |
python36 |
libpython3_6m1_0 |