Описание
Security update for python310
This update for python310 fixes the following issues:
- CVE-2023-52425: Fixed using the system libexpat (bsc#1219559).
Список пакетов
openSUSE Leap 15.5
libpython3_10-1_0-3.10.14-150400.4.48.1
libpython3_10-1_0-32bit-3.10.14-150400.4.48.1
python310-3.10.14-150400.4.48.1
python310-32bit-3.10.14-150400.4.48.1
python310-base-3.10.14-150400.4.48.1
python310-base-32bit-3.10.14-150400.4.48.1
python310-curses-3.10.14-150400.4.48.1
python310-dbm-3.10.14-150400.4.48.1
python310-devel-3.10.14-150400.4.48.1
python310-doc-3.10.14-150400.4.48.1
python310-doc-devhelp-3.10.14-150400.4.48.1
python310-idle-3.10.14-150400.4.48.1
python310-testsuite-3.10.14-150400.4.48.1
python310-tk-3.10.14-150400.4.48.1
python310-tools-3.10.14-150400.4.48.1
openSUSE Leap 15.6
libpython3_10-1_0-3.10.14-150400.4.48.1
libpython3_10-1_0-32bit-3.10.14-150400.4.48.1
python310-3.10.14-150400.4.48.1
python310-32bit-3.10.14-150400.4.48.1
python310-base-3.10.14-150400.4.48.1
python310-base-32bit-3.10.14-150400.4.48.1
python310-curses-3.10.14-150400.4.48.1
python310-dbm-3.10.14-150400.4.48.1
python310-devel-3.10.14-150400.4.48.1
python310-doc-3.10.14-150400.4.48.1
python310-doc-devhelp-3.10.14-150400.4.48.1
python310-idle-3.10.14-150400.4.48.1
python310-testsuite-3.10.14-150400.4.48.1
python310-tk-3.10.14-150400.4.48.1
python310-tools-3.10.14-150400.4.48.1
Ссылки
- Link for SUSE-SU-2024:1698-1
- E-Mail link for SUSE-SU-2024:1698-1
- SUSE Security Ratings
- SUSE Bug 1219559
- SUSE CVE CVE-2023-52425 page
Описание
libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.
Затронутые продукты
openSUSE Leap 15.5:libpython3_10-1_0-3.10.14-150400.4.48.1
openSUSE Leap 15.5:libpython3_10-1_0-32bit-3.10.14-150400.4.48.1
openSUSE Leap 15.5:python310-3.10.14-150400.4.48.1
openSUSE Leap 15.5:python310-32bit-3.10.14-150400.4.48.1
Ссылки
- CVE-2023-52425
- SUSE Bug 1219559