Описание
Security update for python-future
This update for python-future fixes the following issues:
- CVE-2022-40899: Fixed an issue that could allow attackers to cause an excessive CPU usage via a crafted Set-Cookie header (bsc#1206673).
Список пакетов
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
python3-future-0.18.2-150300.3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
python3-future-0.18.2-150300.3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
python3-future-0.18.2-150300.3.3.1
SUSE Linux Enterprise Micro 5.1
python3-future-0.18.2-150300.3.3.1
SUSE Linux Enterprise Micro 5.2
python3-future-0.18.2-150300.3.3.1
SUSE Linux Enterprise Micro 5.3
python3-future-0.18.2-150300.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
python3-future-0.18.2-150300.3.3.1
SUSE Linux Enterprise Real Time 15 SP3
python3-future-0.18.2-150300.3.3.1
openSUSE Leap 15.4
python3-future-0.18.2-150300.3.3.1
openSUSE Leap Micro 5.2
python3-future-0.18.2-150300.3.3.1
openSUSE Leap Micro 5.3
python3-future-0.18.2-150300.3.3.1
Ссылки
- Link for SUSE-SU-2023:0079-1
- E-Mail link for SUSE-SU-2023:0079-1
- SUSE Security Ratings
- SUSE Bug 1206673
- SUSE CVE CVE-2022-40899 page
Описание
An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.
Затронутые продукты
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:python3-future-0.18.2-150300.3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:python3-future-0.18.2-150300.3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:python3-future-0.18.2-150300.3.3.1
SUSE Linux Enterprise Micro 5.1:python3-future-0.18.2-150300.3.3.1
Ссылки
- CVE-2022-40899
- SUSE Bug 1206673