Описание
Security update for python-tqdm
This update for python-tqdm fixes the following issues:
Update to version 4.66.4:
- rich: fix completion
- cli: eval safety (CVE-2024-34062, bsc#1223880)
- pandas: add DataFrame.progress_map
- notebook: fix HTML padding
- keras: fix resuming training when verbose>=2
- fix format_num negative fractions missing leading zero
- fix Python 3.12 DeprecationWarning on import
Список пакетов
Image SLES15-SP4-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-HPC-BYOS
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-HPC-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-Hardened-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAP
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAP-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAP-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAP-Hardened
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAP-Hardened-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAPCAL
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-SAPCAL-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-Azure-3P
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-Azure-Basic
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-Azure-Standard
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-HPC-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-HPC-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-Hardened-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-SAP-Azure-3P
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-SAP-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-SAP-Hardened-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP5-SAPCAL-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-Azure-Basic
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-Azure-Standard
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-HPC
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-HPC-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-HPC-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-Hardened-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-SAP-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-SAP-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-SAP-Hardened
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-SAP-Hardened-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP6-SAPCAL-Azure
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise Module for Python 3 15 SP5
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise Module for Python 3 15 SP6
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise Server 15 SP4-LTSS
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
openSUSE Leap 15.5
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
openSUSE Leap 15.6
python-tqdm-bash-completion-4.66.4-150400.9.12.1
python311-tqdm-4.66.4-150400.9.12.1
Ссылки
- Link for SUSE-SU-2024:1872-1
- E-Mail link for SUSE-SU-2024:1872-1
- SUSE Security Ratings
- SUSE Bug 1223880
- SUSE CVE CVE-2024-34062 page
Описание
tqdm is an open source progress bar for Python and CLI. Any optional non-boolean CLI arguments (e.g. `--delim`, `--buf-size`, `--manpath`) are passed through python's `eval`, allowing arbitrary code execution. This issue is only locally exploitable and had been addressed in release version 4.66.3. All users are advised to upgrade. There are no known workarounds for this vulnerability.
Затронутые продукты
Image SLES15-SP4-BYOS-Azure:python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-HPC-BYOS-Azure:python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-HPC-BYOS:python311-tqdm-4.66.4-150400.9.12.1
Image SLES15-SP4-Hardened-BYOS-Azure:python311-tqdm-4.66.4-150400.9.12.1
Ссылки
- CVE-2024-34062
- SUSE Bug 1223880