Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:4015-2

Опубликовано: 23 дек. 2021
Источник: suse-cvrf

Описание

Security update for python3

This update for python3 fixes the following issues:

  • CVE-2021-3737: Fixed http client infinite line reading (DoS) after a http 100. (bsc#1189241)

  • CVE-2021-3733: Fixed ReDoS in urllib.request. (bsc#1189287)

  • CVE-2021-3426: Fixed an information disclosure via pydoc. (bsc#1183374)

  • Rebuild to get new headers, avoid building in support for stropts.h (bsc#1187338).

Список пакетов

Container caasp/v4/389-ds:1.4.2
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Container caasp/v4/hyperkube:v1.17.17
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Container caasp/v4/k8s-sidecar:0.1.75
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Container ses/6/cephcsi/cephcsi:latest
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Container ses/6/rook/ceph:latest
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Container ses/7/cephcsi/cephcsi:latest
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Container ses/7/prometheus-webhook-snmp:latest
libpython3_6m1_0-3.6.15-3.91.3
python3-base-3.6.15-3.91.3
Container ses/7/rook/ceph:latest
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-Azure-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-EC2-CHOST-HVM-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-EC2-HVM-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-GCE-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-Azure-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-Azure-LI-BYOS-Production
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-Azure-VLI-BYOS-Production
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-EC2-HVM-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SAP-GCE-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-Azure-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-Azure-HPC-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-CHOST-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP1-CHOST-BYOS-EC2
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP1-CHOST-BYOS-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP1-EC2-HPC-HVM-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-EC2-HVM-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-GCE-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-Azure-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-EC2-HVM-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAP-GCE-BYOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAPCAL-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAPCAL-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP1-SAPCAL-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-BYOS-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-BYOS-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-CHOST-BYOS-Aliyun
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP2-CHOST-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP2-CHOST-BYOS-EC2
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP2-CHOST-BYOS-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
Image SLES15-SP2-HPC-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-HPC-BYOS-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-BYOS-Azure
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-BYOS-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-EC2-HVM
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
Image SLES15-SP2-SAP-GCE
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
SUSE Enterprise Storage 6
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-testsuite-3.6.15-3.91.3
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-testsuite-3.6.15-3.91.3
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-testsuite-3.6.15-3.91.3
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise High Performance Computing 15-ESPOS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise High Performance Computing 15-LTSS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise Server 15 SP1-BCL
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-testsuite-3.6.15-3.91.3
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise Server 15 SP1-LTSS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-testsuite-3.6.15-3.91.3
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise Server 15-LTSS
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise Server for SAP Applications 15
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libpython3_6m1_0-3.6.15-3.91.3
python3-3.6.15-3.91.4
python3-base-3.6.15-3.91.3
python3-curses-3.6.15-3.91.4
python3-dbm-3.6.15-3.91.4
python3-devel-3.6.15-3.91.3
python3-idle-3.6.15-3.91.4
python3-testsuite-3.6.15-3.91.3
python3-tk-3.6.15-3.91.4
python3-tools-3.6.15-3.91.3

Ссылки

Описание

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to access. The highest risk of this flaw is to data confidentiality. This flaw affects Python versions before 3.8.9, Python versions before 3.9.3 and Python versions before 3.10.0a7.

Затронутые продукты
Container caasp/v4/389-ds:1.4.2:libpython3_6m1_0-3.6.15-3.91.3
Container caasp/v4/389-ds:1.4.2:python3-3.6.15-3.91.4
Container caasp/v4/389-ds:1.4.2:python3-base-3.6.15-3.91.3
Container caasp/v4/hyperkube:v1.17.17:libpython3_6m1_0-3.6.15-3.91.3
Ссылки

Описание

There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specially crafted payload that is sent by the server to the client. The greatest threat that this flaw poses is to application availability.

Затронутые продукты
Container caasp/v4/389-ds:1.4.2:libpython3_6m1_0-3.6.15-3.91.3
Container caasp/v4/389-ds:1.4.2:python3-3.6.15-3.91.4
Container caasp/v4/389-ds:1.4.2:python3-base-3.6.15-3.91.3
Container caasp/v4/hyperkube:v1.17.17:libpython3_6m1_0-3.6.15-3.91.3
Ссылки

Описание

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to system availability.

Затронутые продукты
Container caasp/v4/389-ds:1.4.2:libpython3_6m1_0-3.6.15-3.91.3
Container caasp/v4/389-ds:1.4.2:python3-3.6.15-3.91.4
Container caasp/v4/389-ds:1.4.2:python3-base-3.6.15-3.91.3
Container caasp/v4/hyperkube:v1.17.17:libpython3_6m1_0-3.6.15-3.91.3
Ссылки
Уязвимость SUSE-SU-2021:4015-2