Описание
Security update for python-wheel
This update for python-wheel fixes the following issues:
- CVE-2022-40898: Fixed an excessive use of CPU that could be triggered via a crafted regular expression (bsc#1206670).
Список пакетов
Image SLES12-SP5-Azure-BYOS
python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-Basic-On-Demand
python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-HPC-BYOS
python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-HPC-On-Demand
python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-SAP-BYOS
python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-SAP-On-Demand
python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-Standard-On-Demand
python3-wheel-0.30.0-2.7.1
SUSE Linux Enterprise Module for Public Cloud 12
python-wheel-0.30.0-2.7.1
python3-wheel-0.30.0-2.7.1
Ссылки
- Link for SUSE-SU-2023:0089-1
- E-Mail link for SUSE-SU-2023:0089-1
- SUSE Security Ratings
- SUSE Bug 1206670
- SUSE CVE CVE-2022-40898 page
Описание
An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-Basic-On-Demand:python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-HPC-BYOS:python3-wheel-0.30.0-2.7.1
Image SLES12-SP5-Azure-HPC-On-Demand:python3-wheel-0.30.0-2.7.1
Ссылки
- CVE-2022-40898
- SUSE Bug 1206670