Описание
Security update for python36
This update for python36 fixes the following issues:
- CVE-2021-3426: Fixed an information disclosure via pydoc (bsc#1183374).
Список пакетов
Image SLES12-SP5-Azure-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-Basic-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-HPC-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-HPC-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-SAP-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-SAP-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-Standard-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-EC2-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-EC2-ECS-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-EC2-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-EC2-SAP-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-EC2-SAP-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-GCE-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-GCE-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-GCE-SAP-BYOS
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-GCE-SAP-On-Demand
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libpython3_6m1_0-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
SUSE Linux Enterprise Server 12 SP5
libpython3_6m1_0-3.6.13-4.39.1
python36-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libpython3_6m1_0-3.6.13-4.39.1
python36-3.6.13-4.39.1
python36-base-3.6.13-4.39.1
Ссылки
- Link for SUSE-SU-2021:1490-1
- E-Mail link for SUSE-SU-2021:1490-1
- SUSE Security Ratings
- SUSE Bug 1183374
- SUSE CVE CVE-2021-3426 page
Описание
There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to access. The highest risk of this flaw is to data confidentiality. This flaw affects Python versions before 3.8.9, Python versions before 3.9.3 and Python versions before 3.10.0a7.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:libpython3_6m1_0-3.6.13-4.39.1
Image SLES12-SP5-Azure-BYOS:python36-base-3.6.13-4.39.1
Image SLES12-SP5-Azure-Basic-On-Demand:libpython3_6m1_0-3.6.13-4.39.1
Image SLES12-SP5-Azure-Basic-On-Demand:python36-base-3.6.13-4.39.1
Ссылки
- CVE-2021-3426
- SUSE Bug 1183374