Описание
Security update for python-uamqp
This update for python-uamqp fixes the following issues:
- CVE-2024-27099: Fixed potential double-free in link_frame_received() (bsc#1220535).
Bug fixes:
- Fixed compatibility with OpenSSL 3.x (bsc#1217782)
Список пакетов
Image SLES15-SP3-BYOS-Azure
python3-uamqp-1.5.3-150100.4.18.1
Image SLES15-SP3-HPC-BYOS-Azure
python3-uamqp-1.5.3-150100.4.18.1
Image SLES15-SP3-SAP-BYOS-Azure
python3-uamqp-1.5.3-150100.4.18.1
Image SLES15-SP3-SAPCAL-Azure
python3-uamqp-1.5.3-150100.4.18.1
SUSE Linux Enterprise Module for Public Cloud 15 SP2
python3-uamqp-1.5.3-150100.4.18.1
SUSE Linux Enterprise Module for Public Cloud 15 SP3
python3-uamqp-1.5.3-150100.4.18.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4
python3-uamqp-1.5.3-150100.4.18.1
SUSE Linux Enterprise Module for Public Cloud 15 SP5
python3-uamqp-1.5.3-150100.4.18.1
openSUSE Leap 15.5
python3-uamqp-1.5.3-150100.4.18.1
Ссылки
- Link for SUSE-SU-2024:0947-1
- E-Mail link for SUSE-SU-2024:0947-1
- SUSE Security Ratings
- SUSE Bug 1217782
- SUSE Bug 1220535
- SUSE CVE CVE-2024-27099 page
Описание
The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect `AMQP_VALUE` failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987.
Затронутые продукты
Image SLES15-SP3-BYOS-Azure:python3-uamqp-1.5.3-150100.4.18.1
Image SLES15-SP3-HPC-BYOS-Azure:python3-uamqp-1.5.3-150100.4.18.1
Image SLES15-SP3-SAP-BYOS-Azure:python3-uamqp-1.5.3-150100.4.18.1
Image SLES15-SP3-SAPCAL-Azure:python3-uamqp-1.5.3-150100.4.18.1
Ссылки
- CVE-2024-27099
- SUSE Bug 1220535