Описание
Security update for python39
This update for python39 fixes the following issues:
Security issues fixed:
- CVE-2024-6923: Fixed email header injection due to unquoted newlines (bsc#1228780)
- CVE-2024-5642: Removed support for anything but OpenSSL 1.1.1 or newer (bsc#1227233)
Non-security issues fixed:
- Fixed executable bits for /usr/bin/idle* (bsc#1227378).
- Improve python reproducible builds (bsc#1227999)
Список пакетов
Container containers/python:3.9
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
Image python_15_6
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
SUSE Enterprise Storage 7.1
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
python39-idle-3.9.19-150300.4.49.1
python39-tk-3.9.19-150300.4.49.1
python39-tools-3.9.19-150300.4.49.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
python39-idle-3.9.19-150300.4.49.1
python39-tk-3.9.19-150300.4.49.1
python39-tools-3.9.19-150300.4.49.1
SUSE Linux Enterprise Module for Legacy 15 SP5
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
SUSE Linux Enterprise Server 15 SP3-LTSS
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
python39-idle-3.9.19-150300.4.49.1
python39-tk-3.9.19-150300.4.49.1
python39-tools-3.9.19-150300.4.49.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
libpython3_9-1_0-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
python39-idle-3.9.19-150300.4.49.1
python39-tk-3.9.19-150300.4.49.1
python39-tools-3.9.19-150300.4.49.1
openSUSE Leap 15.5
libpython3_9-1_0-3.9.19-150300.4.49.1
libpython3_9-1_0-32bit-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-32bit-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-base-32bit-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
python39-doc-3.9.19-150300.4.49.1
python39-doc-devhelp-3.9.19-150300.4.49.1
python39-idle-3.9.19-150300.4.49.1
python39-testsuite-3.9.19-150300.4.49.1
python39-tk-3.9.19-150300.4.49.1
python39-tools-3.9.19-150300.4.49.1
openSUSE Leap 15.6
libpython3_9-1_0-3.9.19-150300.4.49.1
libpython3_9-1_0-32bit-3.9.19-150300.4.49.1
python39-3.9.19-150300.4.49.1
python39-32bit-3.9.19-150300.4.49.1
python39-base-3.9.19-150300.4.49.1
python39-base-32bit-3.9.19-150300.4.49.1
python39-curses-3.9.19-150300.4.49.1
python39-dbm-3.9.19-150300.4.49.1
python39-devel-3.9.19-150300.4.49.1
python39-doc-3.9.19-150300.4.49.1
python39-doc-devhelp-3.9.19-150300.4.49.1
python39-idle-3.9.19-150300.4.49.1
python39-testsuite-3.9.19-150300.4.49.1
python39-tk-3.9.19-150300.4.49.1
python39-tools-3.9.19-150300.4.49.1
Ссылки
- Link for SUSE-SU-2024:3076-1
- E-Mail link for SUSE-SU-2024:3076-1
- SUSE Security Ratings
- SUSE Bug 1227233
- SUSE Bug 1227378
- SUSE Bug 1227999
- SUSE Bug 1228780
- SUSE CVE CVE-2024-5642 page
- SUSE CVE CVE-2024-6923 page
Описание
CPython 3.9 and earlier doesn't disallow configuring an empty list ("[]") for SSLContext.set_npn_protocols() which is an invalid value for the underlying OpenSSL API. This results in a buffer over-read when NPN is used (see CVE-2024-5535 for OpenSSL). This vulnerability is of low severity due to NPN being not widely used and specifying an empty list likely being uncommon in-practice (typically a protocol name would be configured).
Затронутые продукты
Container containers/python:3.9:libpython3_9-1_0-3.9.19-150300.4.49.1
Container containers/python:3.9:python39-3.9.19-150300.4.49.1
Container containers/python:3.9:python39-base-3.9.19-150300.4.49.1
Container containers/python:3.9:python39-devel-3.9.19-150300.4.49.1
Ссылки
- CVE-2024-5642
- SUSE Bug 1227233
Описание
There is a MEDIUM severity vulnerability affecting CPython. The email module didn't properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized.
Затронутые продукты
Container containers/python:3.9:libpython3_9-1_0-3.9.19-150300.4.49.1
Container containers/python:3.9:python39-3.9.19-150300.4.49.1
Container containers/python:3.9:python39-base-3.9.19-150300.4.49.1
Container containers/python:3.9:python39-devel-3.9.19-150300.4.49.1
Ссылки
- CVE-2024-6923
- SUSE Bug 1228780