SUSE-SU-2023:0078-1

Опубликовано: 12 янв. 2023

Источник: suse-cvrf

Описание

Security update for python-future

This update for python-future fixes the following issues:

CVE-2022-40899: Fixed an issue that could allow attackers to cause an excessive CPU usage via a crafted Set-Cookie header (bsc#1206673).

Список пакетов

SUSE Linux Enterprise Module for Public Cloud 12

python-future-0.15.2-3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230078-1/
Link for SUSE-SU-2023:0078-1
https://lists.suse.com/pipermail/sle-security-updates/2023-January/013461.html
E-Mail link for SUSE-SU-2023:0078-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1206673
SUSE Bug 1206673
https://www.suse.com/security/cve/CVE-2022-40899/
SUSE CVE CVE-2022-40899 page

Описание

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

Затронутые продукты

SUSE Linux Enterprise Module for Public Cloud 12:python-future-0.15.2-3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-40899.html
CVE-2022-40899
https://bugzilla.suse.com/1206673
SUSE Bug 1206673

SUSE-SU-2023:0078-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Public Cloud 12

Ссылки

Уязвимость: CVE-2022-40899

Описание

Затронутые продукты

Ссылки