Описание
Security update for python-Mako
This update for python-Mako fixes the following issues:
- CVE-2022-40023: Fixed regular expression Denial of Service when using the Lexer class to parse (bsc#1203246).
Список пакетов
Container ses/7.1/cephcsi/cephcsi:latest
python3-Mako-1.0.7-150000.3.3.1
Container ses/7.1/rook/ceph:latest
python3-Mako-1.0.7-150000.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
python3-Mako-1.0.7-150000.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
python3-Mako-1.0.7-150000.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
python2-Mako-1.0.7-150000.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
python2-Mako-1.0.7-150000.3.3.1
openSUSE Leap 15.3
python2-Mako-1.0.7-150000.3.3.1
python3-Mako-1.0.7-150000.3.3.1
openSUSE Leap 15.4
python3-Mako-1.0.7-150000.3.3.1
Ссылки
- Link for SUSE-SU-2022:3979-1
- E-Mail link for SUSE-SU-2022:3979-1
- SUSE Security Ratings
- SUSE Bug 1203246
- SUSE CVE CVE-2022-40023 page
Описание
Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin.
Затронутые продукты
Container ses/7.1/cephcsi/cephcsi:latest:python3-Mako-1.0.7-150000.3.3.1
Container ses/7.1/rook/ceph:latest:python3-Mako-1.0.7-150000.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-Mako-1.0.7-150000.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-Mako-1.0.7-150000.3.3.1
Ссылки
- CVE-2022-40023
- SUSE Bug 1203246