Описание
Security update for python
This update for python fixes the following issues:
- CVE-2022-45061: Fixed a quadratic IDNA decoding time (bsc#1205244).
The following non-security bug was fixed:
- Making compileall.py compliant with year 2038, backport of fix to Python 2.7 (bsc#1202666, gh#python/cpython#79171).
Список пакетов
Image SLES12-SP5-Azure-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-Azure-Basic-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-Azure-HPC-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-Azure-HPC-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-Azure-SAP-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-Azure-SAP-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-Azure-Standard-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-EC2-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-EC2-ECS-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-EC2-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-EC2-SAP-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-EC2-SAP-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-GCE-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-GCE-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-GCE-SAP-BYOS
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-GCE-SAP-On-Demand
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libpython2_7-1_0-2.7.18-33.17.1
python-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
SUSE Linux Enterprise Server 12 SP4-LTSS
libpython2_7-1_0-2.7.18-33.17.1
libpython2_7-1_0-32bit-2.7.18-33.17.1
python-2.7.18-33.17.1
python-32bit-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-base-32bit-2.7.18-33.17.1
python-curses-2.7.18-33.17.1
python-demo-2.7.18-33.17.1
python-devel-2.7.18-33.17.1
python-doc-2.7.18-33.17.1
python-doc-pdf-2.7.18-33.17.1
python-gdbm-2.7.18-33.17.1
python-idle-2.7.18-33.17.1
python-tk-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
SUSE Linux Enterprise Server 12 SP5
libpython2_7-1_0-2.7.18-33.17.1
libpython2_7-1_0-32bit-2.7.18-33.17.1
python-2.7.18-33.17.1
python-32bit-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-base-32bit-2.7.18-33.17.1
python-curses-2.7.18-33.17.1
python-demo-2.7.18-33.17.1
python-devel-2.7.18-33.17.1
python-doc-2.7.18-33.17.1
python-doc-pdf-2.7.18-33.17.1
python-gdbm-2.7.18-33.17.1
python-idle-2.7.18-33.17.1
python-tk-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libpython2_7-1_0-2.7.18-33.17.1
libpython2_7-1_0-32bit-2.7.18-33.17.1
python-2.7.18-33.17.1
python-32bit-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-base-32bit-2.7.18-33.17.1
python-curses-2.7.18-33.17.1
python-demo-2.7.18-33.17.1
python-devel-2.7.18-33.17.1
python-doc-2.7.18-33.17.1
python-doc-pdf-2.7.18-33.17.1
python-gdbm-2.7.18-33.17.1
python-idle-2.7.18-33.17.1
python-tk-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libpython2_7-1_0-2.7.18-33.17.1
libpython2_7-1_0-32bit-2.7.18-33.17.1
python-2.7.18-33.17.1
python-32bit-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-base-32bit-2.7.18-33.17.1
python-curses-2.7.18-33.17.1
python-demo-2.7.18-33.17.1
python-devel-2.7.18-33.17.1
python-doc-2.7.18-33.17.1
python-doc-pdf-2.7.18-33.17.1
python-gdbm-2.7.18-33.17.1
python-idle-2.7.18-33.17.1
python-tk-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
SUSE Linux Enterprise Workstation Extension 12 SP5
python-devel-2.7.18-33.17.1
SUSE OpenStack Cloud 9
libpython2_7-1_0-2.7.18-33.17.1
libpython2_7-1_0-32bit-2.7.18-33.17.1
python-2.7.18-33.17.1
python-32bit-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-base-32bit-2.7.18-33.17.1
python-curses-2.7.18-33.17.1
python-demo-2.7.18-33.17.1
python-devel-2.7.18-33.17.1
python-doc-2.7.18-33.17.1
python-doc-pdf-2.7.18-33.17.1
python-gdbm-2.7.18-33.17.1
python-idle-2.7.18-33.17.1
python-tk-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
SUSE OpenStack Cloud Crowbar 9
libpython2_7-1_0-2.7.18-33.17.1
libpython2_7-1_0-32bit-2.7.18-33.17.1
python-2.7.18-33.17.1
python-32bit-2.7.18-33.17.1
python-base-2.7.18-33.17.1
python-base-32bit-2.7.18-33.17.1
python-curses-2.7.18-33.17.1
python-demo-2.7.18-33.17.1
python-devel-2.7.18-33.17.1
python-doc-2.7.18-33.17.1
python-doc-pdf-2.7.18-33.17.1
python-gdbm-2.7.18-33.17.1
python-idle-2.7.18-33.17.1
python-tk-2.7.18-33.17.1
python-xml-2.7.18-33.17.1
Ссылки
- Link for SUSE-SU-2022:4275-1
- E-Mail link for SUSE-SU-2022:4275-1
- SUSE Security Ratings
- SUSE Bug 1202666
- SUSE Bug 1205244
- SUSE CVE CVE-2022-45061 page
Описание
An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor; in such a scenario, they could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied supposed hostname. For example, the attack payload could be placed in the Location header of an HTTP response with status code 302. A fix is planned in 3.11.1, 3.10.9, 3.9.16, 3.8.16, and 3.7.16.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:libpython2_7-1_0-2.7.18-33.17.1
Image SLES12-SP5-Azure-BYOS:python-2.7.18-33.17.1
Image SLES12-SP5-Azure-BYOS:python-base-2.7.18-33.17.1
Image SLES12-SP5-Azure-BYOS:python-xml-2.7.18-33.17.1
Ссылки
- CVE-2022-45061
- SUSE Bug 1205244
- SUSE Bug 1211488