Описание
Security update for python3
This update for python3 fixes the following issues:
- CVE-2021-3426: Fixed an information disclosure via pydoc (bsc#1183374)
Список пакетов
Container caasp/v4/389-ds:1.4.2
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
Container caasp/v4/hyperkube:v1.17.17
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
Container caasp/v4/k8s-sidecar:0.1.75
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
Container ses/6/cephcsi/cephcsi:latest
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
Container ses/6/rook/ceph:latest
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
Container ses/7/cephcsi/cephcsi:latest
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
python3-curses-3.6.13-3.81.2
Container ses/7/prometheus-webhook-snmp:latest
libpython3_6m1_0-3.6.13-3.81.1
python3-base-3.6.13-3.81.1
Container ses/7/rook/ceph:latest
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
python3-curses-3.6.13-3.81.2
Container suse/sles/15.2/virt-handler:0.38.1
libpython3_6m1_0-3.6.13-3.81.1
python3-base-3.6.13-3.81.1
Container suse/sles/15.2/virt-launcher:0.38.1
libpython3_6m1_0-3.6.13-3.81.1
python3-base-3.6.13-3.81.1
SUSE Linux Enterprise Micro 5.0
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
python3-curses-3.6.13-3.81.2
python3-dbm-3.6.13-3.81.2
python3-devel-3.6.13-3.81.1
python3-idle-3.6.13-3.81.2
python3-tk-3.6.13-3.81.2
SUSE Linux Enterprise Module for Basesystem 15 SP3
libpython3_6m1_0-3.6.13-3.81.1
python3-3.6.13-3.81.2
python3-base-3.6.13-3.81.1
python3-curses-3.6.13-3.81.2
python3-dbm-3.6.13-3.81.2
python3-devel-3.6.13-3.81.1
python3-idle-3.6.13-3.81.2
python3-tk-3.6.13-3.81.2
SUSE Linux Enterprise Module for Development Tools 15 SP2
python3-tools-3.6.13-3.81.1
SUSE Linux Enterprise Module for Development Tools 15 SP3
python3-tools-3.6.13-3.81.1
Ссылки
- Link for SUSE-SU-2021:1557-1
- E-Mail link for SUSE-SU-2021:1557-1
- SUSE Security Ratings
- SUSE Bug 1183374
- SUSE CVE CVE-2021-3426 page
Описание
There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to access. The highest risk of this flaw is to data confidentiality. This flaw affects Python versions before 3.8.9, Python versions before 3.9.3 and Python versions before 3.10.0a7.
Затронутые продукты
Container caasp/v4/389-ds:1.4.2:libpython3_6m1_0-3.6.13-3.81.1
Container caasp/v4/389-ds:1.4.2:python3-3.6.13-3.81.2
Container caasp/v4/389-ds:1.4.2:python3-base-3.6.13-3.81.1
Container caasp/v4/hyperkube:v1.17.17:libpython3_6m1_0-3.6.13-3.81.1
Ссылки
- CVE-2021-3426
- SUSE Bug 1183374